Wireless Bridge, aaarrgghhh

Anton Markov anton-F0u+EriZ6ihBDgjK7y7TUQ at public.gmane.org
Sun Jan 4 01:36:58 UTC 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello Peter,

I believe the policies "-P" should be set before any other rules.

I am not sure if this will have any effect though.  Otherwise the script
looks OK.  Try turning off all filtering and setting all policies to
ACCEPT to see if it will work that way.

Peter King wrote:
> I've tried a variety of configurations of iptables on the laptop; none of 
> them have yet worked. The most promising script ran something like this:
> 
> /sbin/iptables -F
> /sbin/iptables -A INPUT -i lo -j ACCEPT
> /sbin/iptables -A INPUT -i eth0 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
> /sbin/iptables -A INPUT -i eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
> /sbin/iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT
> /sbin/iptables -A FORWARD -i eth1 -o eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
> /sbin/iptables -P INPUT DROP
> /sbin/iptables -P FORWARD DROP
> /sbin/iptables -P OUTPUT ACCEPT
> 

- -- 
Anton Markov <("anton" + "@" + "truxtar" + "." + "com")>

GnuPG Key fingerprint =
5546 A6E2 1FFB 9BB8 15C3  CE34 46B7 8D93 3AD1 44B4

 "The difference between insanity and genius is measured only by success."
 - Some bad guy from 007
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQE/925FRreNkzrRRLQRAhOrAJwJL+c1nWonnN5aEjR78ncmjDpKKwCfQv4t
d4EAbZItaQ+SgcaBnikDjj8=
=Jl2h
-----END PGP SIGNATURE-----
--
The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml





More information about the Legacy mailing list