Community discussions

MUM Europe 2020
 
DummyPLUG
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 79
Joined: Wed Jan 03, 2018 10:17 am

Question about chain in firewall filter

Sat Aug 11, 2018 9:26 pm

Forgive me if this sounds stupid, for my understanding each packet will go through all filter rules unless it have a match, if I have 10 rules for input chain and another 10 rules for forward chain, is that a packet come from Wan destination to Lan will only go though the 10 rules in forward chain or it will go though all 20 rules?
I believe it will only go through the 10 rules in forward chain, but I am not sure about this.
 
mkx
Forum Guru
Forum Guru
Posts: 3576
Joined: Thu Mar 03, 2016 10:23 pm

Re: Question about chain in firewall filter

Sat Aug 11, 2018 9:30 pm

Packets from WAN to LAN will only go through rules for forward chain.
BR,
Metod
 
User avatar
TFyre
just joined
Posts: 14
Joined: Wed Jan 13, 2010 3:37 pm
Contact:

Re: Question about chain in firewall filter  [SOLVED]

Sat Aug 11, 2018 9:31 pm

That depends on whether you are using a bridge or not.

In bridge mode, traffic will be switched and not routed, so normal firewall rules do not apply. In this case you have to use bridge filters

In routed mode, unless you have a DNAT rule that will redirect the traffic to the local device, it will only go through the 10x FORWARD rules

Who is online

Users browsing this forum: No registered users and 14 guests