Pascal Hambourg wrote: >> replace 10.0.0.1/32 with 10.0.0.0/24 it does not work > > You should double check that. >
I checked replaced 10.0.0.1/32 with 10.0.0.0/24. >>> This ruleset does not need improvements but a total rewrite. >> >> Yes I was thinking the same, I'll put it on the TODO. I even tried once >> with fw builder - it couldn't even import properly, because import and >> export produced not working firewall. > > Just insert this rule and check whether it changes anything : > > iptables -I FORWARD -j ACCEPT > > If SSH works then the ruleset is faulty and I'll have to double-check > it. If SSH does not work, then the cause is elsewhere. > > You can remove the rule with > > iptables -D FORWARD -j ACCEPT it does not work regards
