On Tuesday 28 May 2002 7:49 am, langzi wrote: > Hi, > > I want to set the rule that accept forwarding from eth2 to eth1 (dmz). > > /sbin/iptables -A FORWARD -i eth2 -o eth1 -j ACCEPT > > But, when I do iptables -L, > The rules show that it is from Source: Anywhere to Destination: Anywhere
This is correct - the "Anywhere" means IP addresses. Since you did not specify any source or destination addresses with -s or -d, you really are allowing packets from any address to any address. If you want to see the interfaces which your rules will allow, then use: iptables -L -v Antony.
