On Sat, May 14, 2011 at 05:40:52PM -0700, Steve Edwards wrote: > On Sun, 15 May 2011, Hans Witvliet wrote: > >> It's a bit more complicated.... >> >> after the last rules, it is handy to put: >> $iptables -A INPUT -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; INC " >> iptables -A OUTPUT -o $EXTERNAL_DEV -j LOG --log-prefix " EXT; OUT " >> iptables -A FORWARD -i $EXTERNAL_DEV -j LOG --log-prefix " EXT; FWD " >> So can can see in the syslog what you are missing ;-) > > Adding a couple of lines to root's crontab like: > > # Min hour DOM month DOW command > # ---------------------------------------------- > # */5 * * * * /etc/init.d/iptables stop > > make it easy to enable an 'iptables failsafe' (by un-commenting the last > line) while you're fiddling about.
Alternatively: echo /etc/init.d/iptables stop | at now + 5 minutes -- Tzafrir Cohen icq#16849755 jabber:tzafrir.co...@xorcom.com +972-50-7952406 mailto:tzafrir.co...@xorcom.com http://www.xorcom.com iax:gu...@local.xorcom.com/tzafrir -- _____________________________________________________________________ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- New to Asterisk? Join us for a live introductory webinar every Thurs: http://www.asterisk.org/hello asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users