On Wed, Jan 08, 2003 at 02:49:14PM -0600, Jason Bradley Nance wrote:
> I took lo out of the trusted interfaces, and here is the output of
> "firewall status".
It certainly looks like you're missing all rules to allow any traffic
from lo out. What version of the script are you running?
The specific lines repsonsible for allowing this traffic are:
# Allow packets going out 'lo' to and from external IP
# these are packets from the firewall to the firewall
echo -n "Allowing Gateway to connect to self"
$IPTABLES -t mangle -A OUTPUT -o lo -s $EXT_IP \
-d $EXT_IP -j ACCEPT && \
$IPTABLES -t nat -A OUTPUT -o lo -s $EXT_IP \
-d $EXT_IP -j ACCEPT && \
$IPTABLES -t filter -A OUTPUT -o lo -s $EXT_IP \
-d $EXT_IP -j ACCEPT && \
$IPTABLES -t nat -A POSTROUTING -o lo -s $EXT_IP \
-d $EXT_IP -j ACCEPT && \
within the allow_gateway function.
--
Jamin W. Collins
