Community discussions

just joined
Topic Author
Posts: 8
Joined: Tue Jul 10, 2018 9:50 am

PCC Accept rules explain pls!

Wed Jul 11, 2018 11:21 pm

Policy routing
/ ip firewall mangle
add chain=prerouting dst-address=  action=accept in-interface=LAN
add chain=prerouting dst-address=  action=accept in-interface=LAN
With policy routing it is possible to force all traffic to the specific gateway, even if traffic is destined to the host (other that gateway) from the connected networks. This way routing loop will be generated and communications with those hosts will be impossible. To avoid this situation we need to allow usage of default routing table for traffic to connected networks.
I don't really understand these two rules can somebody explain further? I interpret as if packet come into LAN and it is destined for those gateway accept it. What confuses me is that aren't this all the packets? All the packet need to go to that gateway to get internet access. So isn't this like marking all the packets that is connecting to internet?
Forum Guru
Forum Guru
Posts: 4784
Joined: Mon Apr 20, 2009 9:11 pm

Re: PCC Accept rules explain pls!

Fri Jul 13, 2018 8:34 pm

No. Packets go to gateway, but not to its IP address, they use MAC address. IP address is only there to find the MAC address.
People who quote full posts should be spanked with ethernet cable. Some exceptions for multi-topic threads may apply.

Who is online

Users browsing this forum: No registered users and 22 guests