So I should use any or mention both the external AND the internal? It seems to me that if I block everything coming in on the external interface no package should ever come through.
----- Original Message ----- From: "Camiel Dobbelaar" <[EMAIL PROTECTED]> To: "Matijs" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Sunday, November 17, 2002 12:51 PM Subject: Re: don't get it... > > > On Sun, 17 Nov 2002, Matijs wrote: > > ...it somehow doesn't work. Is this normal? I mean, people are trying to > > connect to MY specific external ip address, not to "any". Then why does > > "any" work and "$ext_ip" not? BTW, the rules are loading normally, it's not > > that I get any errors, it just doesn't work the way I expected it to. > > I assume you want to allow what's in the rdr rule. NAT goes first, so > you should allow traffic to the internal ip, not the external one. > > -- > Cam >
