-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Blair L Strang wrote:
> Adam Bogacki wrote: > >> Hi, I've just set up iptables based on Oskar Andreasson's template >> (eth0/eth1, http://www.faqs.org/docs/iptables) but find I can't >> connect to the server. >> Luckily 'flush-iptables' is to hand. >> >> I've added line 88 to log tcp options according to 'man psad'. Could >> this have done it ? >> >> I'd be grateful for any constructive comment (apologies Oskar). >> >> Adam Bogacki, >> [EMAIL PROTECTED] > > > Might it be because INET_IP is inside the LAN_IP range? > > Regards, > > Blair. > Erm, .. no. Changing the range (below) does not allow server access. As before, it was part of Oskars default config so probably correct. I'm still chewing on it - frustrating, I thought I was there. Adam Bogacki, [EMAIL PROTECTED] > INET_IP="192.168.0.1" > INET_IFACE="eth0" > INET_BROADCAST="192.168.0.100" > > LAN_IP="192.168.0.2" > LAN_IP_RANGE="192.168.0.2/16" > LAN_IFACE="eth1" > > LO_IFACE="lo" > LO_IP="127.0.0.1" > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCllsz18X1Fk5VORARAvZmAJ9ydDffm+slt/qGMMmRoxpSThrbcACbBNRa LbWhORA5MwYd0TZ4IrFIrP0= =0yvG -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
