I have tried to set up Shorewall a guide for using it on a webserver, but I haven't had much luck. I've just installed shorewall so there were no settings, the guide didn't outline any policies so Shorewall wouldn't start. I made one to DROP everything from net to fw, since the rules would accept the rest.
But, whenever the firewall is up, I can't access my apache server even from with in the LAN, when I stop it and then run:
iptables -I INPUT 1 -j ACCEPT
iptables -I OUTPUT 1 -j ACCEPT
iptables -I FORWARD 1 -j ACCEPT
Everythings works fine, I can connect to the serrver. Once I start the firewall again I can't, even though there is a rule to accept net to fw on port 80.
Even stranger is when I change the policy to ACCEPT all traffic from net to fw, it STILL doesn't work. That's with a policy and a rule, both accepting connections on port 80.
I am using Slackware 10 with the 220.127.116.11 kernel. Any help would be greatly appreciated! (I don't have a high enough post count to LINK to the guide, but on the Shorewall website, under documentation, howtos, and guides written by other people its the only one listed.)