Mail archive

Re: [alpine-devel] awall - forward to/from same port

From: Kaarle Ritvanen <>
Date: Wed, 26 Sep 2012 17:10:13 +0300 (EEST)

On Wed, 26 Sep 2012, Natanael Copa wrote:

> On Tue, 25 Sep 2012 12:34:53 -0500
> Jeremy Thomerson <> wrote:
>> The problem is that awall didn't create a rule in the forward chain
>> for -i gre1 -o gre1.
> Not that it means that awall should do the same, but in shorewall you
> add an option called "routeback" to the interface definition.

Well, we could add similar attribute to zone definitions or just make
awall always generate such rules. The downside of the latter option is
that those rules are likely unnecessary in most cases, causing a slight
penalty in performance. What do you think?


Received on Wed Sep 26 2012 - 17:10:13 UTC