problem with netfilter, ipsec and gre combination

Ruprecht Helms rhelms at my-mail.ch
Sat Aug 6 12:05:47 CEST 2005


Aleksandar Milivojevic wrote:

> -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
> -A OUTPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
> -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

What's that.
Basicly you first drop all CHAINS, because of the default policy.
After it you open the chains as needed.

Regards,
Ruprecht



----------------------------------------
Ruprecht Helms IT-Service & Softwareentwicklung

Tel./Fax +49[0]7621 16 99 16
Web: http://www.rheyn.de



More information about the netfilter mailing list