I don't get any pkts or bytes
even if i browse some web pages
only 0 0 ??
i have the "info" switch at on, in my policy ??
what have i done now :)
Shorewall-1.4.8 Chain at - Wed Dec 17 22:00:54 UTC
2003
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- lo *
0.0.0.0/0 0.0.0.0/0
0 0 DROP !icmp -- * *
0.0.0.0/0 0.0.0.0/0
state INVALID
0 0 eth0_in all -- eth0 *
0.0.0.0/0 0.0.0.0/0
0 0 eth1_in all -- eth1 *
0.0.0.0/0 0.0.0.0/0
0 0 eth2_in all -- eth2 *
0.0.0.0/0 0.0.0.0/0
0 0 common all -- * *
0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:INPUT:REJECT:'
0 0 reject all -- * *
0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source
destination
0 0 DROP !icmp -- * *
0.0.0.0/0 0.0.0.0/0
state INVALID
0 0 eth0_fwd all -- eth0 *
0.0.0.0/0 0.0.0.0/0
0 0 eth1_fwd all -- eth1 *
0.0.0.0/0 0.0.0.0/0
0 0 eth2_fwd all -- eth2 *
0.0.0.0/0 0.0.0.0/0
0 0 common all -- * *
0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:FORWARD:REJECT:'
0 0 reject all -- * *
0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * lo
0.0.0.0/0 0.0.0.0/0
0 0 DROP !icmp -- * *
0.0.0.0/0 0.0.0.0/0
state INVALID
0 0 ACCEPT udp -- * eth0
0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
0 0 fw2net all -- * eth0
0.0.0.0/0 0.0.0.0/0
0 0 fw2loc all -- * eth1
0.0.0.0/0 0.0.0.0/0
0 0 fw2dmz all -- * eth2
0.0.0.0/0 0.0.0.0/0
0 0 common all -- * *
0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:OUTPUT:REJECT:'
0 0 reject all -- * *
0.0.0.0/0 0.0.0.0/0
Chain all2all (5 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 common all -- * *
0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:all2all:REJECT:'
0 0 reject all -- * *
0.0.0.0/0 0.0.0.0/0
Chain common (5 references)
pkts bytes target prot opt in out source
destination
0 0 icmpdef icmp -- * *
0.0.0.0/0 0.0.0.0/0
0 0 reject udp -- * *
0.0.0.0/0 0.0.0.0/0
udp dpt:135
0 0 reject udp -- * *
0.0.0.0/0 0.0.0.0/0
udp dpts:137:139
0 0 reject udp -- * *
0.0.0.0/0 0.0.0.0/0
udp dpt:445
0 0 reject tcp -- * *
0.0.0.0/0 0.0.0.0/0
tcp dpt:139
0 0 reject tcp -- * *
0.0.0.0/0 0.0.0.0/0
tcp dpt:445
0 0 reject tcp -- * *
0.0.0.0/0 0.0.0.0/0
tcp dpt:135
0 0 DROP udp -- * *
0.0.0.0/0 0.0.0.0/0
udp dpt:1900
0 0 DROP all -- * *
0.0.0.0/0 255.255.255.
255
0 0 DROP all -- * *
0.0.0.0/0 224.0.0.0/4
0 0 reject tcp -- * *
0.0.0.0/0 0.0.0.0/0
tcp dpt:113
0 0 DROP udp -- * *
0.0.0.0/0 0.0.0.0/0
udp spt:53 state NEW
0 0 DROP all -- * *
0.0.0.0/0 129.142.127.
255
0 0 DROP all -- * *
0.0.0.0/0 192.168.1.25
5
0 0 DROP all -- * *
0.0.0.0/0 192.168.10.2
55
Chain dmz2fw (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 all2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain dmz2loc (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:dmz2loc:ACCEPT:'
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
Chain dmz2net (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:53
0 0 ACCEPT udp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW udp dpt:53
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:dmz2net:ACCEPT:'
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
Chain dynamic (6 references)
pkts bytes target prot opt in out source
destination
Chain eth0_fwd (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 rfc1918 all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 net2loc all -- * eth1
0.0.0.0/0 0.0.0.0/0
0 0 net2dmz all -- * eth2
0.0.0.0/0 0.0.0.0/0
Chain eth0_in (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 ACCEPT udp -- * *
0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
0 0 rfc1918 all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 net2fw all -- * *
0.0.0.0/0 0.0.0.0/0
Chain eth1_fwd (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 loc2net all -- * eth0
0.0.0.0/0 0.0.0.0/0
0 0 loc2dmz all -- * eth2
0.0.0.0/0 0.0.0.0/0
Chain eth1_in (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 loc2fw all -- * *
0.0.0.0/0 0.0.0.0/0
Chain eth2_fwd (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 dmz2net all -- * eth0
0.0.0.0/0 0.0.0.0/0
0 0 dmz2loc all -- * eth1
0.0.0.0/0 0.0.0.0/0
Chain eth2_in (1 references)
pkts bytes target prot opt in out source
destination
0 0 dynamic all -- * *
0.0.0.0/0 0.0.0.0/0
state NEW
0 0 dmz2fw all -- * *
0.0.0.0/0 0.0.0.0/0
Chain fw2dmz (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 all2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain fw2loc (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 all2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain fw2net (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:53
0 0 ACCEPT udp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW udp dpt:53
0 0 all2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain icmpdef (1 references)
pkts bytes target prot opt in out source
destination
Chain loc2dmz (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:22
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:loc2dmz:ACCEPT:'
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
Chain loc2fw (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:22
0 0 ACCEPT udp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW udp dpt:53
0 0 ACCEPT tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:80
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 all2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain loc2net (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
Chain logdrop (60 references)
pkts bytes target prot opt in out source
destination
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:logdrop:DROP:'
0 0 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
Chain net2all (3 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 common all -- * *
0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:net2all:DROP:'
0 0 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
Chain net2dmz (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 net2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain net2fw (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 net2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain net2loc (1 references)
pkts bytes target prot opt in out source
destination
0 0 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * *
0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT icmp -- * *
0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 net2all all -- * *
0.0.0.0/0 0.0.0.0/0
Chain newnotsyn (14 references)
pkts bytes target prot opt in out source
destination
0 0 LOG all -- * *
0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix
`Shorewall:newnotsyn:DROP:'
0 0 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
Chain reject (11 references)
pkts bytes target prot opt in out source
destination
0 0 REJECT tcp -- * *
0.0.0.0/0 0.0.0.0/0
reject-with tcp-reset
0 0 REJECT udp -- * *
0.0.0.0/0 0.0.0.0/0
reject-with icmp-port-unreachable
0 0 REJECT icmp -- * *
0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-unreachable
0 0 REJECT all -- * *
0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-prohibited
Chain rfc1918 (2 references)
pkts bytes target prot opt in out source
destination
0 0 RETURN all -- * *
255.255.255.255 0.0.0.0/0
0 0 RETURN all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 255.255.255.255
0 0 DROP all -- * *
169.254.0.0/16 0.0.0.0/0
0 0 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 169.254.0.0/16
0 0 logdrop all -- * *
172.16.0.0/12 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 172.16.0.0/12
0 0 logdrop all -- * *
192.0.2.0/24 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 192.0.2.0/24
0 0 logdrop all -- * *
192.168.0.0/16 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 192.168.0.0/16
0 0 logdrop all -- * *
0.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 0.0.0.0/7
0 0 logdrop all -- * *
2.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 2.0.0.0/8
0 0 logdrop all -- * *
5.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 5.0.0.0/8
0 0 logdrop all -- * *
7.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 7.0.0.0/8
0 0 logdrop all -- * *
10.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 10.0.0.0/8
0 0 logdrop all -- * *
23.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 23.0.0.0/8
0 0 logdrop all -- * *
27.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 27.0.0.0/8
0 0 logdrop all -- * *
31.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 31.0.0.0/8
0 0 logdrop all -- * *
36.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 36.0.0.0/7
0 0 logdrop all -- * *
39.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 39.0.0.0/8
0 0 logdrop all -- * *
41.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 41.0.0.0/8
0 0 logdrop all -- * *
42.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 42.0.0.0/8
0 0 logdrop all -- * *
49.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 49.0.0.0/8
0 0 logdrop all -- * *
50.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 50.0.0.0/8
0 0 logdrop all -- * *
58.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 58.0.0.0/7
0 0 logdrop all -- * *
70.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 70.0.0.0/7
0 0 logdrop all -- * *
72.0.0.0/5 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 72.0.0.0/5
0 0 logdrop all -- * *
83.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 83.0.0.0/8
0 0 logdrop all -- * *
84.0.0.0/6 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 84.0.0.0/6
0 0 logdrop all -- * *
88.0.0.0/5 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 88.0.0.0/5
0 0 logdrop all -- * *
96.0.0.0/3 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 96.0.0.0/3
0 0 logdrop all -- * *
127.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 127.0.0.0/8
0 0 logdrop all -- * *
197.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 197.0.0.0/8
0 0 logdrop all -- * *
198.18.0.0/15 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 198.18.0.0/15
0 0 logdrop all -- * *
201.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 201.0.0.0/8
0 0 logdrop all -- * *
223.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 223.0.0.0/8
0 0 logdrop all -- * *
240.0.0.0/4 0.0.0.0/0
0 0 logdrop all -- * *
0.0.0.0/0 0.0.0.0/0
ctorigdst 240.0.0.0/4
Yahoo! Mail (http://dk.mail.yahoo.com) - Gratis: 6 MB lagerplads, spamfilter og
virusscan
-------------------------------------------------------
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills. Sign up for IBM's
Free Linux Tutorials. Learn everything from the bash shell to sys admin.
Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
