On 05/30/2011 12:05 AM, Farkas Levente wrote: > before this setup i've this in the rules: > SSH(ACCEPT) net:$ADMIN_NET fw > which was working, but after that i'm no longer able to access to the > host:-( > so in this case what is the right rule? net should have to be world or?
'...no longer able to access..' isn't enough to go on. I would at least need to see what log message is generated when you try to access (the output of 'shorewall dump' collected right after you tried to access would be better) in order to tell you what's wrong. > and what's the reason of the: > net all DROP info > in the middle of the policy file when there is a reject at the end? So the box and it's VMs are stealth from the net. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ vRanger cuts backup time in half-while increasing security. With the market-leading solution for virtual backup and recovery, you get blazing-fast, flexible, and affordable data protection. Download your free trial now. http://p.sf.net/sfu/quest-d2dcopy1
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
