win32sux: I thought the issue would be made apparent by including the phoenixlabs.org thread. The "it" refers to the tutorial. What more can I give you?
Here are my shorewall rules; as you can see they are pretty vanilla:
Code:
# cat shorewall/policy
#
# Shorewall version 4 - Policy File
#
# For information about entries in this file, type "man shorewall-policy"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-policy.html
#
###############################################################################
#SOURCE DEST POLICY LOG LIMIT:BURST
# LEVEL
$FW net ACCEPT
net all DROP info
all all REJECT info
#LAST LINE -- DO NOT REMOVE
# cat shorewall/rules
#
# Shorewall version 4 - Rules File
#
# For information on the settings in this file, type "man shorewall-rules"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-rules.html
#
############################################################################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/ MARK
# PORT PORT(S) DEST LIMIT GROUP
#SECTION ESTABLISHED
#SECTION RELATED
SECTION NEW
SSH/ACCEPT net $FW
Web/ACCEPT net $FW
NTP/ACCEPT net:192.168.1.101 $FW
ACCEPT net $FW tcp 631
ACCEPT net $FW udp 631
ACCEPT net $FW tcp 49999
ACCEPT net $FW udp 49999
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
These are my current rules, and they do as expected. Changing ACCEPT to NFQUEUE breaks internet.
TIA,
-O