On Thu, 2006-10-05 at 15:22 +0200, Hans-Werner Hilse wrote: > Hi, > > On Thu, 05 Oct 2006 08:07:49 -0500 Michael Sullivan > <[EMAIL PROTECTED]> wrote: > > > ACCEPT all -- 192.168.1.0/24 anywhere state NEW > > [...] > > > > And I can still detect all those ports open from nmap on another > > machine. > > Yep. That's how it should be according to your iptables dump. I never > fighted with ipkungfu, but I think the LOCAL_NET configuration opens > the door for the given network. At least that's how I interpret that > comment there that says you should enter loopback network data if not > sure. You probably should really do that. > > -hwh
I've configured it this way because the IP address of each of my computers will be changing once I get this firewall thing working. I'll try that though. -- gentoo-user@gentoo.org mailing list
