Ysurac
commented
1 week ago Please use the template. I confirm Shorewall is working. And ping must not be blocked.
Open DivineRuins opened 1 week ago
Ysurac
commented
1 week ago Please use the template. I confirm Shorewall is working. And ping must not be blocked.
DivineRuins
commented
1 week ago ah excuse me thought it was a quick question, i know icmp needs to be open but i was testing something simple and it didn't block it nothing i change in the /etc/shorewall/rules is reflected after a shorewall reload for me. can you suggest any other test
Ysurac
commented
1 week ago I've done same test to check and it worked. I commented the "Ping(ACCEPT)" line and uncommented the "Ping(DROP)", systemctl restart shorewall and ping was dropped.
You can check if shorewall correctly started using journalctl -u shorewall and via iptables-save
DivineRuins
commented
1 week ago having all ports open got me worried for a sec. maybe there is another firewall taking precedence in the debian img i used, i'll check and report back, thank you
Can you please confirm shorewall is working ? i made couple of tests and they failed to block anything or enforce any rules a simple PING(DROP) net $fw doesn't do nothing i am thinking of moving to something else altogether is it just me?