From mboxrd@z Thu Jan 1 00:00:00 1970 From: Thomas Berthel To: documentation@lists.ipfire.org Subject: Re: VLAN Konfig Date: Sun, 09 Jun 2013 09:37:37 +0200 Message-ID: <51B430C1.5090202@gmx.net> In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============4110978974702656760==" List-Id: --===============4110978974702656760== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Hi Erik, > the installation section might be better than optimizations True, you're right. > 1) The results in the CUSTOM Chains doesn=C2=B4t display the destination ports only the source ports, why is that ? What exactly do you mean? I just do not see what you mean. > 2) Also, is it necessary to define --sport ? Yes. So I give with which ports exactly what to do and what not. But, I'm not an iptables expert. That was my first real attempt and has worked well so far. > 3) Another question is, are you operating in Mode 0 in the outgoing FW ? No, i use Modus 1. > Or in other words is it possible to define such rules without problems with the VLAN config and interface names like green 003 etc. ? I think that is not RFC compliant. However, there is the possibility 0-4095 to put the IDs. http://www.oit.ucsb.edu/committees/CNC-BEG/vlan_id.asp > 4) Did you also try to add these rules over the webinterface ? I have not tested yet. But, I can do that. BG, Thomas Am 09.06.2013 06:54, schrieb Erik K.: > Hi Thomas, > first of all, thanks for the wiki in this theme, i think it is important to= have some good explanation in there. May the location can be changed if you = have finished this wiki, the installation section might be better than optimi= zations. >=20 > I have some questions to your IPTable rules.=20 > 1) The results in the CUSTOM Chains doesn=C2=B4t display the destination po= rts only the source ports, why is that ?=20 > 2) Also, is it necessary to define --sport ?=20 > 3) Another question is, are you operating in Mode 0 in the outgoing FW ?=20 > 4) Did you also try to add these rules over the webinterface ? Or in other = words is it possible to define such rules without problems with the VLAN conf= ig and interface names like green 003 etc. ? >=20 > One hint to the mailinglist, this is a international area so we write only = in english >=20 > Greetings >=20 > Erik >=20 > Am 08.06.2013 um 13:42 schrieb Thomas Berthel: >=20 >> Hi zusammen, >> >> ich habe hier: http://wiki.ipfire.org/de/optimization/vlan/start die >> Doku f=C3=BCr das VLAN fertig gestellt, k=C3=B6nnte das jemand von euch in= ein >> brauchbares Format f=C3=BCr die englisch sprechenden Uer vorbereiten. >> Korregturen d=C3=BCrfen nat=C3=BCrlich ebenso vorgenommen werden ;-) >> >> >> Ein sch=C3=B6nes Wochenende! Thomas >> _______________________________________________ >> Documentation mailing list >> Documentation(a)lists.ipfire.org >> http://lists.ipfire.org/mailman/listinfo/documentation >=20 > _______________________________________________ > Documentation mailing list > Documentation(a)lists.ipfire.org > http://lists.ipfire.org/mailman/listinfo/documentation >=20 --===============4110978974702656760==--