IPTABLES - FORWARD

The place to post if you need help or advice

Moderators: ChrisThornett, LXF moderators

IPTABLES - FORWARD

Postby scooter » Tue Dec 03, 2013 6:39 pm

Merry Christmas and all that !!

I'm hoping someone can solve a problem I have with IPTABLES.
Running Centos5.9 and have MASQUERADE between eth0 & eth1 with port forwarding for specific ports.

This works fine with IPTABLES -P FORWARD ACCEPT. As soon as I set IPTABLES -P FORWARD DROP the specific ports don't get forwarded.

I thought that IPTABLES "read" from top to bottom and everything before the [ DROP ] would be accepted. :roll:
scooter
 
Posts: 23
Joined: Wed May 06, 2009 10:32 am
Location: Scottish Borders

Postby sledgehammer » Sat Dec 07, 2013 6:20 pm

Its been a while since I played with IPTABLES but I think you are setting a default policy of DROP so this will always happen regardless of any other IPTABLE entries on the FORWARD chain.
User avatar
sledgehammer
 
Posts: 47
Joined: Fri Jul 28, 2006 2:03 pm

Postby scooter » Sat Dec 07, 2013 10:53 pm

Thanks for the reply.

Does that mean that it's only FORWARD DROP that kills everything as I have INPUT DROP and I get inputs accepted.

I load the " accept " entries before the " drop " entries.
scooter
 
Posts: 23
Joined: Wed May 06, 2009 10:32 am
Location: Scottish Borders


Return to Help!

Who is online

Users browsing this forum: No registered users and 1 guest

cron