Re: [Fwbuilder-discussion] wrong rule generated (I think)
Brought to you by:
mikehorn
Menu
▾
▴
Re: [Fwbuilder-discussion] wrong rule generated (I think)
|
From: Ethy H. B. <eth...@in...> - 2006-07-30 00:16:57
|
On Sun, 30 Jul 2006 00:44:01 +0200 Vadim Kurland ✈ <va...@vk...> wrote: > > $IPTABLES -A FORWARD -i eth1 -s 192.168.0.0/24 -d 192.168.0.255 > > -m state ... > > > > instead of > > > > $IPTABLES -A INPUT -i eth1 -s 192.168.0.0/24 -d 192.168.0.255 - > > m state ... > > > > what is the address of interface eth1 in the firewall object in > firewall builder? Its IP address and netmask should match network > 192.168.0.0/24 for which 192.168.0.255 is the broadcast address. If > the address and netmask are different, then compiler has no way to > know that 192.168.0.255 is a broadcast address. You're right. I mistakenly set the netmask to 255.255.255.255 instead of 255.255.255.0. FWB created the right rule after I corrected my mistake Regards -- Ethy H. Brito /"\ InterNexo Ltda. \ / CAMPANHA DA FITA ASCII - CONTRA MAIL HTML +55 (12) 3979-6860 X ASCII RIBBON CAMPAIGN - AGAINST HTML MAIL S.J.Campos - Brasil / \ |