I've recently installed ClearOS 7.0 Community. I'm trying to use the Multi-WAN feature with Source-Base Routes and Destination Port Rules. Using Webconfig, I have one target IP that I've marked to be reached by eth0 exclusively; and all traffic with destination port 25 to be dispatched via eth2 (so eth1 is LAN interface). The issue is that none of the rules are acomplished, and the conections are made "randomly" from any of the WAN Interfaces. I've checked the iptables rules and none of these are present. I checked the /etc/clearos/multiwan.conf and /etc/clearos/firewall.conf and is present the desired configuration ready to be read by the ClearOS System Scripts. Any ideas why this configuration is not reaching the firewall?
In Multi-WAN
Share this post:
Responses (3)
-
Accepted Answer
If the rule was an ACCEPT rule in the output chain then it probably has no effect as there is a permit all rule at the end of the chain anyway (unless you have changed the default behavior). Also it cannot be guaranteed that the rule will appear with the same line number if you make any other changes to your firewall. The safest way to delete it is with the full rule definition rather than the line number, but I doubt if it will help. Can you restart your firewall then list the OUTPUT chain with "iptables -nvL OUTPUT" and put the result between code tags when you post.
Did you have a look at the routing table ("ip route") as I suggested? -
Accepted Answer
Than you Nick,
I checked the "iptables -L --line-numbers" and noticed that automaticly the system adds rules for both interfaces. Y used the command "iptables -D OUTPUT 20" since at line 20 was listed the rule for the interface I don't wan to send SMTP e-Mails.
How do I save this persistently?
Thanks on advanced! -
Accepted Answer
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »