>so i created this /etc/shorewall/policy file > >loc net DROP >loc loc ACCEPT >loc fw ACCEPT >fw all ACCEPT >net all DROP >all all REJECT
I haven't looked at any of your dump (nor do I know how to read it), but you logs will probably be a lot more useful if you change your policy file to this: loc net DROP info loc loc ACCEPT loc fw ACCEPT fw all ACCEPT net all DROP info all all REJECT info All though, as others have mentioned, the following rules are kind of a bad idea or not needed IMHO: loc loc ACCEPT loc fw ACCEPT fw all ACCEPT Particularly the loc->fw ACCEPT policy is a bad idea. It's much better to just add a coupple of rules instead. For more tips, see PPPPPPS at http://linuxman.wikispaces.com/PPPPPPS -Russel ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
