Hi Russ, Oh yeah - well spotted....
I've tried changing stuff around and it works now. (I had to move the :forward-internal-vlan-if - [0:0] section to before the :FORWARD section.) I'll have a go at the nat tables next. thanks for your help Jim ### FORWARD ### :forward-internal-vlan-if - [0:0] #Jim -A forward-internal-vlan-if -p tcp --dport 3132 --destination 10.15.244.3/32 --jump ACCEPT %%filter_forward_vlan%% :FORWARD DROP [0:0] #Jim -A FORWARD -i eth0 --jump ACCEPT -A FORWARD -i eth3 --jump forward-internal-vlan-if #:forward-internal-vlan-if - [0:0] ##Jim #-A forward-internal-vlan-if -p tcp --dport 3132 --destination 10.15.244.3/32 --jump ACCEPT #%%filter_forward_vlan%% :forward-internal-inline-if - [0:0] %%filter_forward_inline%% :OUTPUT ACCEPT [0:0] On 28 January 2013 16:31, Russel Ingram <[email protected]> wrote: > The last one there is in the forward-internal-vlan-if table section but > specifies adding to the FORWARD table. That might cause a problem. It should > either go before :forward-internal-vlan-if if you intended it to go in the > FORWARD table or it should start with -A forward-internal-vlan-if instead of > -A FORWARD if you really intended for it to go in the > forward-internal-vlan-if table. > > Russ > > --- > Russel Ingram > Associate Systems Administrator > Institute for Systems Biology > 401 Terry Ave N > +1 206 732 2140 > > > On Mon, Jan 28, 2013 at 6:29 AM, Mr J Potter <[email protected]> > wrote: >> >> Hi all, >> >> I'm trying to add my own rules to iptables.conf, but not all of them are >> implemented - does anyone know what I'm doing wrong? I've added the 3 -A >> FORWARD entries here: >> >> ### FORWARD ### >> :FORWARD DROP [0:0] >> #Jim >> -A FORWARD -i eth0 --jump ACCEPT >> -A FORWARD -i eth2 -o eth0 --jump forward-internal-vlan-if >> :forward-internal-vlan-if - [0:0] >> #Jim >> -A FORWARD -p tcp --dport 3132 --destination 10.15.244.3/32 --jump ACCEPT >> %%filter_forward_vlan%% >> >> when I restart PF only the first one is implemented. Any idea what goes >> on? >> >> thanks in advance, >> >> Jim Potter >> >> >> >> >> ------------------------------------------------------------------------------ >> Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, >> MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current >> with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft >> MVPs and experts. ON SALE this month only -- learn more at: >> http://p.sf.net/sfu/learnnow-d2d >> _______________________________________________ >> PacketFence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users >> > > > ------------------------------------------------------------------------------ > Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, > MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current > with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft > MVPs and experts. ON SALE this month only -- learn more at: > http://p.sf.net/sfu/learnnow-d2d > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users > ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_jan _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
