[Bug 929426] firewalld: forward chain

bugzilla at redhat.com bugzilla at redhat.com
Mon Jun 9 12:34:34 UTC 2014


https://bugzilla.redhat.com/show_bug.cgi?id=929426



--- Comment #6 from Frank Ansari <mail at frank-ansari.de> ---
Because I did not know this. 

Today I again tried to figure it out and found it.

Also I found I could make it permanent with /etc/firewalld/direct.xml.

<?xml version="1.0" encoding="utf-8"?>
<direct>
   [ <rule ipv="ipv6" table="filter" chain="FORWARD_direct" priority="0"> -p
tcp --dport 22 -j ACCEPT </rule> ]
</direct>

This is working.

In this documentation

https://fedoraproject.org/wiki/FirewallD

the "direct" method is mentioned but not the direct.xml file.

The main problem is: how shall one know that you have to check for the keyword
"direct" when you want want to do forwarding?

In the documentation you only find "port forwarding" when you search for the
keyword "forward". 

Here where I found it:

http://superuser.com/questions/654687/how-to-allow-forwarding-with-firewalld-on-a-fedora-19-router

This was the right clue. Something like this should be added to the
documentation.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.


More information about the docs-qa mailing list