> > Well, I am a little bit confused, because usually, I run machines with
> > "real" NICs and if I activate firewall rules that drop packets from
> > that NIC, I can run tcpdump on that NIC and will not see the dropped
> > packets.
>
> Are you 100% certain of that?
No, I now realize, that
Dirk GOUDERS wrote:
[ ... ]
If you are using PPPoE, the system de-encapsulates the IP traffic off of the
PPP session via the tun0 interface. tun0 can be treated as your "external
interface" when writing firewall rules, setting up NAT, etc.
Well, I am a little bit confused, because usually, I
> >>> I just started to use an ADSL line with PPPoE and want run a firewall
> >>> between it and my local network. What I am wondering about is that even
> >>> if I only have the default everything-blocking rule (deny ip from any to
> >>> any) I still see incoming packets on tun0 with tcpdump
Dirk GOUDERS wrote:
I just started to use an ADSL line with PPPoE and want run a firewall
between it and my local network. What I am wondering about is that even
if I only have the default everything-blocking rule (deny ip from any to
any) I still see incoming packets on tun0 with tcpdump.
If
> >I just started to use an ADSL line with PPPoE and want run a firewall
> >between it and my local network. What I am wondering about is that
> >even if I only have the default everything-blocking rule (deny ip from
> >any to any) I still see incoming packets on tun0 with tcpdump.
> >
> >I
Dirk Gouders wrote:
>Hello,
>
>I just started to use an ADSL line with PPPoE and want run a firewall
>between it and my local network. What I am wondering about is that
>even if I only have the default everything-blocking rule (deny ip from
>any to any) I still see incoming packets on tun0 with t
Hello,
I just started to use an ADSL line with PPPoE and want run a firewall
between it and my local network. What I am wondering about is that
even if I only have the default everything-blocking rule (deny ip from
any to any) I still see incoming packets on tun0 with tcpdump.
Is this, because t
