[BlueOnyx:13880] Re: original BlueOnyx iptables configuration
Tom
wcstaff at webcoast.com
Thu Oct 17 10:10:22 -05 2013
Michael Stauber <mstauber at ...> writes:
>
> Hi Tom,
>
> > Is there a template for BlueOnyx, where it shows those default
settings?
>
> You're probably looking for this:
>
> [root <at> 5107r ~]# cat /etc/sysconfig/iptables
> # /etc/sysconfig/iptables
> # This file is automatically generated by log_traffic.
> # Any manual changes will be lost
> *filter
> :INPUT ACCEPT [0:0]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> :acctin - [0:0]
> :acctout - [0:0]
> -A INPUT -j acctin
> -A OUTPUT -j acctout
> -A acctin -d 127.0.0.1/32
> -A acctout -s 127.0.0.1/32
> -A acctin -d 127.0.0.1/32
> -A acctout -s 127.0.0.1/32
> -A acctin -d <server-IP>/32
> -A acctout -s <server-IP>/32
> COMMIT
>
> Replace <server-IP> with the primary IP of your server.
>
> These are just the standard accounting rules on a BlueOnyx. All they do
> is to measure the traffic for the GUI statistics. They don't block
> anything and if you're missing them, all that will be affected are the
> (currently) worthless built in traffic statistics in the GUI. Which is
> really not that big of a loss.
>
Thanks,
This was exactly what I was looking for.
I added a couple of more rules as well, from info found searching.
I also want to thank everyone that participates in these forums and offers
help to others. I have learned so much in just the past couple of weeks,
searching archives for answers, tutorials, workarounds, fixes, etc.. The
wealth of archived information available is amazing, as well as the
participants who offer it.
Thank You
Tom
More information about the Blueonyx
mailing list