Re: [Fwbuilder-discussion] iptable rules CRAZY
Brought to you by:
mikehorn
From: Vadim K. ✎ <va...@vk...> - 2008-07-18 16:08:18
|
On Jul 18, 2008, at 8:25 AM, li...@li... wrote: > Hi to all, can you explain me how it is possible (look to the > attached image) ?. > Look to the first and to the last line in the figure. > In my network i have the host 192.168.1.109 (defined under fwbuilder > with mac address) that can go everywere (rule 7). > The last rule on my firewall (Rule 37) is "any - any - any -all - > Both - Deny". > In the first line,192.168.1.109 can't reach 193.193.172.197 > (SPT=1337,DPT=80) (according with rule 37 - INCORRECT) > > In the last line the same host can reach the same destination ip > with the same SPT and DPT (according with rule 7 - CORRECT). > > I'm using FWBUILDER 2.1.13 under OpenSUSE 10.3 how does rule #7 look like ? do you use any rule options, such as limiting ? --vk |