On Sat, May 16, 2020 at 09:23:36AM -0400, merlinverde...@infomed.sld.cu wrote: > How can i implement the following rules: > > iptables -A INPUT -p tcp -m tcp --dport 80 -m state --state NEW,ESTABLISHED > -j ACCEPT > iptables -A INPUT -p tcp -m tcp --sport 80 -m state --state NEW,ESTABLISHED > -j ACCEPT
Probably you'd just handle NEW and allow connection tracking to handle ESTABLISHED: ACCEPT all $FW tcp www > i can not find examples about the use of NEW,ESTABLISHED in shorewall. https://shorewall.org/manpages/shorewall-rules.html -- Justin _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
