On Fri, Jan 04, 2002 at 12:19:42PM -0700, Michael Halcrow wrote:
> Ed said:
> "It appears that you're default polocy is to ACCEPT packets in that chain,
> so the rule you've added is redundent."
>
> Levi said:
> "Neither of them will work separately. The former enables the kernel
> ip_forwarding subsystem, and the iptables rules control how the subsystem
> does its job."
>
> Um, I don't mean to catalyze conflict here, but what is the real story?
No conflict here. Ed's referring solely to the iptables stuff. If the
default is to forward, you don't need an explicit rule to make it
forward a certain source/dest pair, unless it's doing something special
like NAT/masq or logging. It still doesn't do anything at all unless
ip_forwarding is 1.
--Levi
---------------------------------------------------------------------------------
To unsubscribe from the BYU UUG discussion mailist list, send email to
[EMAIL PROTECTED] with the word "UNSUBSCRIBE" as the message body
