| To: | <netfilter@lists.netfilter.org> |
|---|---|
| Subject: | iptables/bridge/nfs |
| From: | "Gary W. Smith" <gary@primeexalia.com> |
| Date: | Mon, 20 Nov 2006 14:18:23 -0800 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | netfilter-list1@securepoint.com |
| List-archive: | </pipermail/netfilter> |
| List-help: | <mailto:netfilter-request@lists.netfilter.org?subject=help> |
| List-id: | General discussion and user questions <netfilter.lists.netfilter.org> |
| List-post: | <mailto:netfilter@lists.netfilter.org> |
| List-subscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe> |
| List-unsubscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe> |
| Sender: | netfilter-bounces@lists.netfilter.org |
| Thread-index: | AccM8MssX2ujVCuQTReLTxnxMhgpOA== |
| Thread-topic: | iptables/bridge/nfs |
I'm trying to get NFS (udp) to work through an iptables firewall that also has a bridge. The bridge is eth0 and eth2. The NFS server resides on eth3, the client exist on eth2 the internet is on eth0. My iptables contains this as the FORWARD rule: -A FORWARD -m physdev --physdev-in eth2 -j ACCEPT -A FORWARD -i eth3 -j ACCEPT We did have it locked down pretty much but we want to try to find out why this doesn't work. Some posts say that if the MTU is different then it might fragment but in this case they are both 1500. Does anyone have any basic ideas why this might not be working? Gary Wayne Smith |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: ipset: how to run non-root, R. DuFresne |
|---|---|
| Next by Date: | How to measure CPU usage of netfilter, Mohammad Farooq |
| Previous by Thread: | Fwd: multiple DNAT alternative?, Noman Jamil |
| Next by Thread: | RE: iptables/bridge/nfs, Gary W. Smith |
| Indexes: | [Date] [Thread] [Top] [All Lists] |