> Your first step (removing the UPNP rule from common.def is: > > a) Unnecessary -- your ACCEPT rules will be traversed well before the > common chain is traversed. > b) Wrong -- You should NEVER modify the common.def file. This is pointed > out in the comments at the beginning of the file and is reinforced at > http://shorewall.sf.net/shorewall_extension_scripts.htm. > > The 'common' chain it traversed after all rules have failed to match and > before a DROP or REJECT policy is applied -- the only reason for the DROP > rule for UPNP is so your log won't fill up with DROP or REJECT messages if > you specify logging on your policy. Thanks for the informations, I have hacked the common.def file because I haven't fully read the documentation of shorewall before tring to use upnpd.
Tomorrow I'll try the same setup without modifing the common.def file; I have just deleted the first step from the instructions provided. Best regards. Cristian Giussani ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
