On Tue, 2011-05-17 at 15:50 -0600, netfilter@xxxxxxxxxxxxxx wrote: Please don't top post. > OK. Thanks. So to block/allow traffic from network A to/from network B > I would apply my rules to the FORWARD chain using a source/destination. Yes. > The INPUT and OUTPUT chains on eth0 and eth1 are only for traffic bound > for the firewall/router box itself? Yes. A picture paints a thousand words: http://upload.wikimedia.org/wikipedia/commons/3/37/Netfilter-packet-flow.svg Or if you want a simpler version: http://www.docum.org/docum.org/kptd/ Andy -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
