[BlueOnyx:13878] Re: original BlueOnyx iptables configuration
Michael Stauber
mstauber at blueonyx.it
Wed Oct 16 20:35:27 -05 2013
Hi Tom,
> Is there a template for BlueOnyx, where it shows those default settings?
You're probably looking for this:
[root at 5107r ~]# cat /etc/sysconfig/iptables
# /etc/sysconfig/iptables
# This file is automatically generated by log_traffic.
# Any manual changes will be lost
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:acctin - [0:0]
:acctout - [0:0]
-A INPUT -j acctin
-A OUTPUT -j acctout
-A acctin -d 127.0.0.1/32
-A acctout -s 127.0.0.1/32
-A acctin -d 127.0.0.1/32
-A acctout -s 127.0.0.1/32
-A acctin -d <server-IP>/32
-A acctout -s <server-IP>/32
COMMIT
Replace <server-IP> with the primary IP of your server.
These are just the standard accounting rules on a BlueOnyx. All they do
is to measure the traffic for the GUI statistics. They don't block
anything and if you're missing them, all that will be affected are the
(currently) worthless built in traffic statistics in the GUI. Which is
really not that big of a loss.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list