[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Somehow ipchains forwarding got enabled by default???

On Wed, Feb 16, 2000 at 12:17:31PM +0100, Peter Palfrader wrote:
|On Wed, Feb 16, 2000 at 08:02:23PM +0900, Julian Stoev wrote:
|> Hi!
|> I just noticed some strange change in my ipchains default state.
|> Right now it is:
|> Chain input (policy ACCEPT):
|> Chain forward (policy ACCEPT):
|> Chain output (policy ACCEPT):
|> 
|> I remeber until very recently I had only input and output chains. Still 
|> less /proc/sys/net/ipv4/ip_forward gives 0.
|
|These are AFAIK the kernel defaults. As long as you don't enable
|forwarding with sg like echo "1" > /proc/sys/net/ipv4/ip_forward
|there's nothing to worry about.
|
|Don't panic :)

Well, but how could this forward chain appear?

The reason why I wrote also about my kernel config is not because I don't 
know that ipchains is not _directly_ related to kernel.  Sometimes some 
kernel config changes trigger some Debian script to behave in different 
way.  I remember about kernel modules for example.  In my case I did not 
make such changes.  So I wonder if I did something to create such chain 
or some updated package did this.  Or maybe something else...

Is this is some Debian package change, I think this is not very good change 
and I would make a bug report on this package. If this was me, I will 
internally report a bug against myself...;)

Which package could create this chain?

--JS
Reply to: