[SLUG] ipchains rules
hi slugs, i'm a bit confused with the following rules... this is from the ipchains howto which i'm trying to understand. please look at these two rules... ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad are the -i eth0 and -i ppp0 destination interfaces, or are they source interfaces? what is read between the -s 192.168.1.0/24 and the -i eth0 and, or, not, what? sorry if it's unclear as i'm trying to grasp what exactly is going on with the packet that is traversing these rules. -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text
Re: [SLUG] ipchains rules
Hey Ben, please look at these two rules... ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz ipchains is forwarding to the chain good-dmz anything with source address 192.168.1.x which arrives via the eth0 interface. ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad ipchains is forwarding to the chain good-bad anything with source address 192.168.1.x which arrives via the ppp0 interface. Gavin Sherry http://LinuxWorld.com.au -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text
Re: [SLUG] ipchains rules
ah, so to clarify there is an "and" between -s 192.168.1.0/24 -i eth0 ? "[-SwM-]" wrote: Hey Ben, please look at these two rules... ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz ipchains is forwarding to the chain good-dmz anything with source address 192.168.1.x which arrives via the eth0 interface. ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad ipchains is forwarding to the chain good-bad anything with source address 192.168.1.x which arrives via the ppp0 interface. Gavin Sherry http://LinuxWorld.com.au -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text
Re: [SLUG] ipchains rules
Ben, Yes, it could be thought of in terms of AND logic. Gavin ]}=== __ _ / / (_)__ __ __ / /__/ / _ \/ // /\ \/ / . . . t h e c h o i c e o f a //_/_//_/_,_/ /_/_\ G N U g e n e r a t i o n . . . -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text
Re: [SLUG] ipchains rules
Frankly I find it better to avoid the logic of the forward rules and just stick to the inbound and the outbound rules, note that I say inbound, not input and outbound, not output; there is subtle difference in these names. Howard. __ LANNet Computing Associates http://www.lannet.com.au On Thu, 8 Jun 2000, Ben Donohue wrote: hi slugs, i'm a bit confused with the following rules... this is from the ipchains howto which i'm trying to understand. please look at these two rules... ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad are the -i eth0 and -i ppp0 destination interfaces, or are they source interfaces? what is read between the -s 192.168.1.0/24 and the -i eth0 and, or, not, what? sorry if it's unclear as i'm trying to grasp what exactly is going on with the packet that is traversing these rules. -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text -- SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au To unsubscribe send email to [EMAIL PROTECTED] with unsubscribe in the text