why are FORWARD rules ignored in my iptables scripts
I have got most of iptables working but for some reason the FORWARD rules are ignored.
For example in this script I get INPUT and OUTPUT log entries but no FORWARD entries.
web="eth0"
lan="wlan0"
echo "Web: $web"
echo "Lan: $lan"
echo 1 > /proc/sys/net/ipv4/ip_forward
for f in /proc/sys/net/ipv4/conf/*/rp_filter;
do echo 1 > $f
done
echo 1 > /proc/sys/net/ipv4/ip_dynaddr
# clear current firewall
iptables -X
iptables -t filter -F
iptables -t nat -F
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
# accept loopback
iptables -A INPUT -i lo -j ACCEPT
# for testing
iptables -I FORWARD -j LOG --log-prefix 'forward rules start *******'
iptables -I INPUT -j LOG --log-prefix 'input rules start *******'
iptables -I OUTPUT -j LOG --log-prefix 'output rules start *******'
|