Am Tuesday, den 10. April hub Anton Sidorov folgendes in die Tasten: Hi! > The problem is that if I put > iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > or just > iptables -A FORWARD -m state --state ESTABLISHED -j ACCEPT [...] > it is possible to access my internal web server (and not only web > server) from outside > despite I did not open port 80 in FORWARD chain and policy for FORWARD > is DROP. [...] > I've been fighting with that problem for two weeks now. > I rewrite my script several times and brought it to bare basic but > nothing has fixed the problem. Maybe it would help to see the "bare basic" script, so we could get the "big picture". Ciao Max -- | | Follow the white penguin. | |\/| | |-----------------------------------------------------------. | | |/\| | Rechnerbetrieb Mathematik | Meine Baustellen: TSM | | | Universitaet Paderborn | Hostmaster, Linux, LDAP |
