Thanks all for your help
I finally decided to go with a more simple port forwarding solution
using socat a tool to forward tcp conections. This way I can filter
forwarded ports by using the router's INPUT chain.
Cheers
On Sun, Aug 26, 2012 at 1:08 PM, Peter Baldridge
wrote:
> On Sun, Aug 26, 20
On Sun, Aug 26, 2012 at 10:11 AM, Juan Diego Tascón wrote:
> Is there any way to debug iptables, Juan,
Another good way to debug IPTables (if you can limit the traffic to the box
to just what you are troubleshooting) use the command :
sudo iptables -Z && sudo watch -n .5 iptables -nvL
^zeros t
Dear Juan,
see the section on logging in the wiki:
https://wiki.archlinux.org/index.php/Iptables#Logging
Cheers
Bastian
On Sun, Aug 26, 2012 at 7:11 PM, Juan Diego Tascón wrote:
> Thanks for both replies. The graphic does it a lot more
> understandable. Is there any way to debug iptables, I me
Thanks for both replies. The graphic does it a lot more
understandable. Is there any way to debug iptables, I mean, like a
tool where I can visualize the path of a packet and where exactly it
gets dropped/accepted and also realtime packets headers (src, dst,
proto, dport, sport, etc)?
On Sat, Aug
2012/8/25 Juan Diego Tascón :
> Good day,
Hello :)
> I'm thinking of
> setting the default FORWARD policy to ACCEPT as my default INPUT
> policy is DROP and unless there is a valid FORWARD rule for a given
> port the packets wont go anywhere. I'm I right on this?
You're wrong. Either a packet go
On 25.08.2012 18:47, Juan Diego Tascón wrote:
Good day,
I'm currently configuring a router. I'm setting the default policies
to DROP in the INPUT OUTPUT AND FORWARD chains. I'm thinking of
setting the default FORWARD policy to ACCEPT as my default INPUT
policy is DROP and unless there is a valid
Good day,
I'm currently configuring a router. I'm setting the default policies
to DROP in the INPUT OUTPUT AND FORWARD chains. I'm thinking of
setting the default FORWARD policy to ACCEPT as my default INPUT
policy is DROP and unless there is a valid FORWARD rule for a given
port the packets wont
7 matches
Mail list logo
