Diego Andrés Asenjo Gonzalez ha scritto: > Sorry, a typo :p. You pointed clearly the "-o eth1" in the previous > message. Really, is the first time that I use -i or -o in the rule. One > point is that the box is a bridge between a LAN and a router, eth0 is in > the LAN and eth1 in the router. So, I thought I can ommit the interface. You have to use physdev on a bridge (-m physdev --physdev-out eth1). -- ********************************************************************** Marco Innocenti Gruppo Infrastruttura e Sicurezza CINECA phone:+39 0516171553 / fax:+39 0516132198 Via Magnanelli 6/3 e-mail: innocenti@xxxxxxxxx 40033 Casalecchio di Reno Bologna (Italia) ********************************************************************** _______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
