From: John Frey (johnf@goldcircuit.com)
Date: Mon Nov 13 2000 - 06:43:11 PST
> How do these lines differently effect ipchains
>
> $IPCHAINS -A iput -p tcp -s $REMOTET -d $OUTERNET <port> -j ACCEPT
This line will accept only packets addressed to an address that falls into
the same IP Net (Address w/ mask) as your external interface. i.e.: If your
outer IP address is 172.16.5.12/6, then any packet addressed to IP Addresses
172.16.4.1 - 172.16.7.254 will be allowed THRU the firewall. ( /6
signifies an IP mask of 255.255.252.0 )
>
> $IPCHAINS -A iput -p tcp -s $REMOTET -d $REMOTENET <port> -i $OUTERIF -j
> ACCEPT
This line will accept packets TO any IP address and allow them THRU the
firewall.
Hope this helps
John
****************************************************************************
* To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall"
* in the message body to majordomo@pointman.org. Please direct other
* questions, comments, or problems to pmfirewall-owner@pointman.org.
*
* Need answers fast? Check the list archive located at:
* http://www.pointman.org/PMFirewall/list-archive/
*
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:37:43 PDT