Re: [Fwbuilder-discussion] internal interface
Brought to you by:
mikehorn
Menu
▾
▴
Re: [Fwbuilder-discussion] internal interface
|
From: Vadim K. <va...@vk...> - 2003-08-08 17:28:56
|
On Friday, August 8, 2003, at 10:26 AM, Kevin Anderson wrote: > HI! > > > I would like to have a certain host be able to ping the firewall this > host > is on the dmz > > host---fw(int interface)-fw(ext interface)-internet > > the host needs to be able to get a ping response from the internal > interface, i have tried 2 rules fw-host accept host-fw accept, then > rules > in the interface itself. is there a way to do this? i am using > fwbuilder > 1.2. > you need a rule like this: src=host dst=fw srv=ping action=accept put this rule somewhere in the global policy and you should be fine. BTW, there is no fwbuilder v1.2 --vk |