Re: iptables question
Pascal Hambourg wrote:
>> replace 10.0.0.1/32 with 10.0.0.0/24 it does not work
>
> You should double check that.
>
I checked replaced 10.0.0.1/32 with 10.0.0.0/24.
>>> This ruleset does not need improvements but a total rewrite.
>>
>> Yes I was thinking the same, I'll put it on the TODO. I even tried once
>> with fw builder - it couldn't even import properly, because import and
>> export produced not working firewall.
>
> Just insert this rule and check whether it changes anything :
>
> iptables -I FORWARD -j ACCEPT
>
> If SSH works then the ruleset is faulty and I'll have to double-check
> it. If SSH does not work, then the cause is elsewhere.
>
> You can remove the rule with
>
> iptables -D FORWARD -j ACCEPT
it does not work
regards
Reply to: