what rule can allow icmp packets....
Jesse.linux
jdelima@inq7.net
Tue, 16 Oct 2001 17:09:30 +0800
i have a problem?
when i use this rules
iptables -P FORWARD DROP
iptables -P INPUT DROP
iptables -P OUTPUT DROP
It obviously drop all the request of any protocol connected to my
server.....even the rule
iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE.....
i want( for security reasons) to block all the chains....but the problem is
what rule will i make in order that all request coming from a workstation
connected to my server pass?
i tried using
iptables -A FORWARD -p ALL -s 192.168.0.35 -d 0/0 -j ACCEPT....
so that 192.168.0.35 will pass and can surf the net and ping to the
internet....
is this rule wrong?.....
what rule can allow icmp packets to pass if FORWARD chain is DROPPED?....
thanks.....