Henrik Nordstrom wrote: > > This configuration can be done just fine with iptables as demonstrated in my > earlier message, but here we go again (but slightly different): > > # Allow existing connections > iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > # Allow hidden net to initiate new connections (including connection pickup) > iptables -A FORWARD -i eth0 -j ACCEPT > # Drop anything else > iptables -A FORWARD -j DROP
Sorry, I don't understand something ! :-/ Does that mean that you DROP all the ACKs, even those which are valid ? Regards -- Emmanuel I am not a vegetarian because I love animals; I am a vegetarian because I hate plants. -- A. Whitney Brown
