[Nufw-users] iptables !!!

nufw-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Nufw-users] iptables !!!

From:	jellad tarek
Subject:	[Nufw-users] iptables !!!
Date:	Tue, 22 May 2007 14:59:37 +0200

before trying NuFw i like to try iptables but i have 2 prob :

I have this case

machine "lan" ---------------------------------- gateway(+squid) ---------------------   internet
192.168.2.2                         192.168.2.1

note : the machine "lan" can access to internet (==> no prob with squid)

*) first problem
1) in the gateway if i write :
iptables -A OUTPUT -s 192.168.2.0/24 -p tcp -m state --state NEW,ESTABLISHED -j DROP
==> the machine "lan" can't access internet and it's logic
2) but when i write this :
iptables -A OUTPUT -s 192.168.2.2 -p tcp -m state --state NEW,ESTABLISHED -j DROP
==>the machine "lan" can access internet !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! why??

*) second problem
if i write this (in the getway):
iptables -A OUTPUT -s 192.168.2.0/24 -p tcp -m state --state NEW,ESTABLISHED -j DROP
==> the machine "lan" can't access internet
and whene i add --dport 80 like this :
iptables -A OUTPUT -s 192.168.2.0/24 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j DROP
==>the machine "lan" can access internet !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
why ???
thanks

[Prev in Thread]

Current Thread

[Next in Thread]

[Nufw-users] iptables !!!, jellad tarek <=
- Re: [Nufw-users] iptables !!!, Vincent Deffontaines, 2007/05/22

Prev by Date: Re: [Nufw-users] nuauth and acls !!!!
Next by Date: Re: [Nufw-users] iptables !!!
Previous by thread: [Nufw-users] nuauth and acls !!!!
Next by thread: Re: [Nufw-users] iptables !!!
Index(es):
- Date
- Thread