Forward rule

  • Anonymous - 2012-01-31

    I have been using fwbuilder for about a couple of years but only recently I had the need to use NAT (or PAT for the network people) and I run into a small problem:
    I cannot create the rule:

    iptables -I FORWARD -s 0/0 -d -p tcp --dport 22 -j ACCEPT

    using fwbuilder.
    I do all my NATing correct I think (it works!) and i enter the following rule by hand each time I restart the firewall…

    Is there any way that this rule can be created by the GUI?


  • Vadim Kurland

    Vadim Kurland - 2012-01-31

    the "-s 0/0" matches any source address and so is equivalent to not having the "-s" clause at all. The rest of the rule is simple stateless rule that can easily be constructed in fwbuilder if you put object that represents address in "Destination" and object that represents tcp service ssh in "Service". You can find the latter in the Standard Objects  library.


