Re: [Fwbuilder-discussion] Can fwbuilder generate a simple rule to accept all traffic that's IN and
Brought to you by:
mikehorn
Menu
▾
▴
Re: [Fwbuilder-discussion] Can fwbuilder generate a simple rule to accept all traffic that's IN and OUT the same bridge?
|
From: Love, D. <dou...@hp...> - 2012-01-27 17:46:52
|
It might help by making that one rule STATELESS as well... Options -> Rule Options -> General tab -> Stateless rule -Doug -----Original Message----- From: Whit Blauvelt [mailto:wh...@tr...] Sent: Friday, January 27, 2012 10:36 AM To: Vadim Kurland Cc: fwb...@li... Subject: Re: [Fwbuilder-discussion] Can fwbuilder generate a simple rule to accept all traffic that's IN and OUT the same bridge? On Fri, Jan 27, 2012 at 09:23:48AM -0800, Vadim Kurland wrote: > On Fri, Jan 27, 2012 at 8:58 AM, Whit Blauvelt <wh...@tr...> wrote: > > Now I'm trying to take the other approach, of putting VM-specific > > rules on the VMs themselves. But the host wants to insist on > > blocking this traffic - and I can't find the way to use the > > fwbuilder GUI to specify a rule to allow traffic to and from br0 to > > simply be accepted. No combination of br0 in Source, Destination or > > Interface results in any rule being generated at all > > - just nothing. Meanwhile a lot gets blocked: > > > > ... RULE 7 -- DENY IN=br0 OUT=br0 PHYSIN=eth0 PHYSOUT=vnet0 ... > > > > Now, RULE 7 in this case is just "drop everything else." Is there a > > way in the fwbuilder GUI to set a rule that will simply accept all > > traffic that is > > "IN=br0 OUT=br0" regardless of PHYSIN and PHYSOUT? > > > > I guess a rule with interface "br0" and action Accept should do it ? > Make sure it is first in the rule set. Yeah, that's what I was hoping. But as I said putting it in any combination of Source, Destination or Interface and then generating the rule from that produces _nothing_ when I compile the rule. > Also firewall should be marked as "bridging firewall" to make certain > rules go into FORWARD chain. Marking it as a "bridging firewall" still results in nothing being generated by a request through the GUI for a rule regarding traffic on br0. There's no error reported - no "I can't make this rule because ...." It just presents a line with the rule number as a comment, and then blank. Whit ------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Fwbuilder-discussion mailing list Fwb...@li... https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion |