�Hola!
[Please stop sending the MS-TNEF shit...]
> This is obviously a stupid question to the cognoscenti, but what do the
> "input" and "output" firewall options on the ipfwadm command actually, or
> are meant to be used for?
I'll probably oversimplify it, mainly because my understanding of the
internals is very close to 0...
All the traffic coming into the system passes through the input filters
before being "processed".
All the traffic that has passed the input filter and is not destined to the
localhost goes thru the forwarding filters.
All the traffic that is going out passes thru the out filter just before
hitting the network adapters...
> I have a LRP firewall set up up with machine "A" on the internal network
> side. With no firewalling (i.e. accept all) I can ping it, read it's web
> pages etc from the external side. I can then use ipfwadm -F to block http
> (for example) from a specific external host. This works fine. If I then
> reinstate forwading and use ipfwadm -I with similar parameters, I get the
> same result. So what's the difference between F, I, and O? Is F simply a
> combination of I and O for ease of use?
Nope, F doesn't apply to traffic destined to/originated from the local host.
> Neil
HoraPe
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
