Also to note, if you edit your /etc/sysconfig/iptables file manually there is a line in /etc/init.d./iptables at line number 300 that will save on service iptables restart; meaning if you run that command the buffer will save over the file and basically revert any changes you just made to the file. On Tue, Dec 13, 2011 at 11:05 AM, cliff here <c4ifford at gmail.com> wrote: > Here's a really good overview of how the iptables process works > > http://fedoraunity.org/Members/kanarip/iptables-howto > > > > > On Tue, Dec 13, 2011 at 10:53 AM, <m.roth at 5-cent.us> wrote: > >> Laurent Wandrebeck wrote: >> > On Tue, 13 Dec 2011 10:23:45 -0500 >> > cliff here <c4ifford at gmail.com> wrote: >> > >> >> My best guess would be to move your forwarding rules to the INPUT chain >> >> instead of being in the PREROUTING. >> > Will try that once I figure out iptables syntax. >> > Is it me or I hit a system-config-firewall bug in rules generation ? >> >> These days, I either edit /etc/sysconfig/iptables or iptables-save > >> iptables. Take one, clone it, edit the line. -s source, -d destination, -p >> protocol covers most of it, along with -j ACCEPT or -j DROP. >> >> mark >> >> _______________________________________________ >> CentOS mailing list >> CentOS at centos.org >> http://lists.centos.org/mailman/listinfo/centos >> > > > > -- > > ------------------------------------------------------------------------------------------------------------------------------------- > NOTICE: This message, including all attachments, is intended for the use > of the individual or entity to which it is addressed and may contain > information that is privileged, confidential and exempt from disclosure > under applicable law. If the reader of this message is not the intended > recipient, or the employee or agent responsible for delivering this message > to its intended recipient, you are hereby notified that any dissemination, > distribution or copying of this communication is strictly prohibited. If > you have received this communication in error, please notify the sender > immediately by replying "Received in error" and immediately delete this > message and all its attachments. > > ------------------------------------------------------------------------------------------------------------------------------------- > -- ------------------------------------------------------------------------------------------------------------------------------------- NOTICE: This message, including all attachments, is intended for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering this message to its intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify the sender immediately by replying "Received in error" and immediately delete this message and all its attachments. -------------------------------------------------------------------------------------------------------------------------------------