Re: [Vserver] firewall between 2 vservers

From: Herbert Poetzl <herbert_at_13thfloor.at>
Date: Mon 08 Jan 2007 - 17:35:05 GMT
Message-ID: <20070108173505.GC29949@MAIL.13thfloor.at>

On Sun, Jan 07, 2007 at 09:46:32PM +0100, Oliver Welter wrote:
> Hi Bruno,
>
> > All traffic does go through iptables, even local one!
> >
> > Local traffic will leave through the OUTPUT chain and come in
> > through the INPUT chain, using lo interface. In most cases though
> > iptables is configured to accept all traffic that goes through lo...
> >
>
> Hmm , guess I was wrong - through lo it should work - I mixxed up my
> tries to do some nat between guests which is surely not working through
> loopback.

sorry to correct you once again, NAT on lo is working
perfectly fine too, just requires the proper kernel
support and the correct rules ...

note: naturally local traffic does not pass the forward
chains at all, only output, and input

HTH,
Herbert

> Sorry for the miss....
>
> Oliver

> _______________________________________________
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver

_______________________________________________
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Received on Mon Jan 8 17:58:58 2007

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Mon 08 Jan 2007 - 17:59:03 GMT by hypermail 2.1.8