Hi,
I recently noticed that the compiler sets up ACCEPT as the policy for
all {zone}2{zone} chains. This is a bit counter-intuitive as I'd except
my policy file to be valid even for stuff that moves inside a zone.
Is this a bug or is there some specific idea to having this hard coded
policy? Right now I've had to add "dmz dmz REJECT" to my file in order
to get the behaviour I want.
Rgds
--
-- Pierre Ossman
Linux kernel, MMC maintainer http://www.kernel.org
rdesktop, core developer http://www.rdesktop.org
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
