Re: iptables "whitelist" rule

To: debian-user@lists.debian.org
Subject: Re: iptables "whitelist" rule
From: "Adrian Levi" <adrian.levi@gmail.com>
Date: Mon, 5 May 2008 07:23:14 +1000
Message-id: <[🔎] d3826e640805041423p6ef01aacta42f9f1d7b298b63@mail.gmail.com>
In-reply-to: <[🔎] 1209920266.4476.71.camel@osmosis.gnet.eu>
References: <[🔎] 1209920266.4476.71.camel@osmosis.gnet.eu>

2008/5/5 Raven <raven@vp44.net>:
>  I am not really sure how to tell iptables to whitelist the traffic that
>  is not being forwarded.
>  In other words, the ipp2p module should not drop the packets originating
>  from/destinated to the router itself.
>
>  Here is my current script:

As Kevin has already stated, The input and output chains/tables are
for the local machine only. And all forwarded traffic goes through the
forward chain only.

With a quick glance your current script seems to do what you want.
Do some testing both from expected IP Ranges and not expected IP ranges.

Adrian

-- 
24x7x365 != 24x7x52 Stupid or bad maths?
<erno> hm. I've lost a machine.. literally _lost_. it responds to
ping, it works completely, I just can't figure out where in my
apartment it is.

Reply to:

Follow-Ups:
- Re: iptables "whitelist" rule
  - From: Raven <raven@vp44.net>

References:
- iptables "whitelist" rule
  - From: Raven <raven@vp44.net>

Prev by Date: Cannot partition a hard drive with the Etch installer
Next by Date: Re: Booting kernel 2.6.25 from Debian40r3 prompts: Waiting for root file system
Previous by thread: Re: iptables "whitelist" rule
Next by thread: Re: iptables "whitelist" rule
Index(es):
- Date
- Thread