From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1F03Rv-0008RX-4y for garchives@archives.gentoo.org; Fri, 20 Jan 2006 21:05:35 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k0KL21BV031890; Fri, 20 Jan 2006 21:02:01 GMT Received: from smtp.athabascau.ca (smtp.athabascau.ca [131.232.10.21]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k0KKw9ZI022727 for ; Fri, 20 Jan 2006 20:58:09 GMT Received: from CONVERSION-DAEMON.local.athabascau.ca by local.athabascau.ca (PMDF V6.2-1x9 #31242) id <0ITE0NB01SWWP2@local.athabascau.ca> for gentoo-user@lists.gentoo.org; Fri, 20 Jan 2006 13:58:08 -0700 (MST) Received: from dimon2.pc.athabascau.ca ([131.232.4.114]) by local.athabascau.ca (PMDF V6.2-1x9 #31242) with ESMTP id <0ITE0N6DTSWWJC@local.athabascau.ca>; Fri, 20 Jan 2006 13:58:08 -0700 (MST) Date: Fri, 20 Jan 2006 13:58:10 -0700 From: "Dmitry S. Makovey" Subject: Re: [gentoo-user] Re: iptables question In-reply-to: To: gentoo-user@lists.gentoo.org Cc: James Message-id: <200601201358.14677.dmitry@athabascau.ca> Organization: Athabasca University X-Envelope-from: dmitry@athabascau.ca Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-version: 1.0 Content-type: multipart/signed; boundary=nextPart6745323.rGqVnNmoLC; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-transfer-encoding: 7BIT User-Agent: KMail/1.9 References: <200601201249.25509.dmitry@athabascau.ca> X-Archives-Salt: 7a3cdfdd-7d1a-4dd3-9d94-7917de632ee8 X-Archives-Hash: 19a8327a5a818600fe6e648c4bdecc09 --nextPart6745323.rGqVnNmoLC Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 20 January 2006 13:41, James wrote: > #for unlimited traffic on the loopback interface > iptables -A INPUT -i lo -j ACCEPT > iptables -A OUTPUT -o lo -j ACCEPT since I've done my "flushing" all my rules are nice and permissive ;) dimon2 ~ # iptables -t filter -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination dimon2 ~ # iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination So I doubt I need specific rules for "lo" or any other device except=20 for NAT rules to redirect my traffic. =2D-=20 Dmitry Makovey Web Systems Administrator Athabasca University (780) 675-6245 --nextPart6745323.rGqVnNmoLC Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQBD0U7myDrVuGfS98QRAiotAJ9MhOOrDo/7u54sPyq1H8XfK5ONiQCgwCB2 Z0SfyEBEi3hL3cWI/5tTPwI= =Ob22 -----END PGP SIGNATURE----- --nextPart6745323.rGqVnNmoLC-- -- gentoo-user@gentoo.org mailing list