Tom Eastep wrote: > Interface. It is specifically targeted at the loopback device. Note that > Shorewall automatically generates an ACCEPT rule in the INPUT flow for > that device, so all filtering occurs in the OUTPUT chain. > This was my next question. Currently I have this sequence of rules regarding 'lo' (INPUT chain):
-A INPUT -i lo -j local2fw [...] -A INPUT -i lo -j ACCEPT The latter will never execute. ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. This 200-page book is written by three acclaimed leaders in the field. The early access version is available now. Download your free book today! http://p.sf.net/sfu/neotech_d2d_may _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
