[Firewall] Firewall FULL_ACCESS_HOSTS setting

Lonnie Abelbeck lists at lonnie.abelbeck.com
Sat Dec 10 00:43:15 CET 2011

Hi Stuart,

I see you have NAT="0", for internal hosts to communicate to the outside world you will need some sort of proxy (for all your services), or more commonly, set NAT="1".


On Dec 9, 2011, at 5:26 PM, Stuart Foster wrote:

> On 12/09/11 17:11, Stuart Foster wrote:
>> Hello,
>> I have been using this firewall for some years (currently version
>> 2.0.0b) quite successfully.
>> I have recently acquired a smart phone which when set to use my WIFI
>> access point and internet proxy is fine for web browsing but other
>> applications baulk when they try to connect to remote sites (I am new to
>> this but I am assuming the apps are not in general using my http proxy).
>> If I use wireshark on my linux based firewall external ether-net port I
>> can see various packets being launched at the various sites from the
>> phones IP but not one response is received. To try and resolve this I
>> have set FULL_ACCESS_HOSTS to the IP of the smart phone, this however
>> has made no difference, packets get sent but nothing is seen in reply.
>> Any suggestions/ideas on how to proceed ?
>> Thanks
>> Stuart Foster
>> _______________________________________________
>> Firewall mailing list
>> Firewall at rocky.eld.leidenuniv.nl
>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>> Arno's (Linux IPTABLES Firewall) Homepage:
>> http://rocky.eld.leidenuniv.nl
> Hello,
> Further to my earlier e-mail I have attached here various configuration files for my firewall system (the system is based on LFS and BLFS and is currently running the linux 3.1.4 kernel, the files refer to it normal operational configure).
> Thanks
> Stuart Foster

More information about the Firewall mailing list