1234567891011121314151617181920212223242526272829303132 |
- <html>
- <head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
- <title>Re: GSoC Port Forwarding</title>
- <link rel="important stylesheet" href="">
- <style>div.headerdisplayname {font-weight:bold;}
- </style></head>
- <body>
- <table border=0 cellspacing=0 cellpadding=0 width="100%" class="header-part1"><tr><td><div class="headerdisplayname" style="display:inline;">Oggetto: </div>Re: GSoC Port Forwarding</td></tr><tr><td><div class="headerdisplayname" style="display:inline;">Mittente: </div>Marek Marczykowski-Górecki <marmarek@invisiblethingslab.com></td></tr><tr><td><div class="headerdisplayname" style="display:inline;">Data: </div>22/08/2021, 00:30</td></tr></table><table border=0 cellspacing=0 cellpadding=0 width="100%" class="header-part2"><tr><td><div class="headerdisplayname" style="display:inline;">A: </div>Giulio <giulio@gmx.com></td></tr><tr><td><div class="headerdisplayname" style="display:inline;">CC: </div>Frédéric Pierret <frederic.pierret@qubes-os.org></td></tr></table><br>
- <div class="moz-text-plain" wrap=true graphical-quote=true style="font-family: -moz-fixed; font-size: 14px;" lang="x-unicode"><pre wrap class="moz-quote-pre">
- On Sat, Aug 21, 2021 at 12:08:55AM +0200, Giulio wrote:
- </pre><blockquote type=cite style="color: #007cff;"><pre wrap class="moz-quote-pre">
- <span class="moz-txt-citetags">> </span>Hi,
- <span class="moz-txt-citetags">> </span>as an addendum to the previous email, the problema was the fact that the
- <span class="moz-txt-citetags">> </span>first rule to match in the qubes-firewall table, forward chain was:
- <span class="moz-txt-citetags">> </span>iifname !="*vif" accept
- <span class="moz-txt-citetags">> </span>By moving that to the end of the chain, the attached one is the new
- <span class="moz-txt-citetags">> </span>trace which makes a lot more sense and increase the counters.
- <span class="moz-txt-citetags">> </span>However, I still cannot see any traffic reaching the next hop.
- </pre></blockquote><pre wrap class="moz-quote-pre">
- Check if that isn't iptables blocking it. By default it does block new
- connections coming from outside. I initially thought it would interfere
- only at the final hop, but maybe at an earlier too...
- <div class="moz-txt-sig">--
- Best Regards,
- Marek Marczykowski-Górecki
- Invisible Things Lab
- </div></pre></div></body>
- </html>
- </table></div>
|