Forward rule

Anonymous
2012-01-31
2013-03-05

  • Anonymous
    2012-01-31

    Hi,
    I have been using fwbuilder for about a couple of years but only recently I had the need to use NAT (or PAT for the network people) and I run into a small problem:
    I cannot create the rule:

    iptables -I FORWARD -s 0/0 -d 10.10.1.2 -p tcp --dport 22 -j ACCEPT
    

    using fwbuilder.
    I do all my NATing correct I think (it works!) and i enter the following rule by hand each time I restart the firewall…

    Is there any way that this rule can be created by the GUI?

    thanks

     
  • Vadim Kurland
    Vadim Kurland
    2012-01-31

    the "-s 0/0" matches any source address and so is equivalent to not having the "-s" clause at all. The rest of the rule is simple stateless rule that can easily be constructed in fwbuilder if you put object that represents address 10.10.1.2 in "Destination" and object that represents tcp service ssh in "Service". You can find the latter in the Standard Objects  library.