Virtual Router/ Firewall/ VPN

Reply
New Contributor
Posts: 2
Registered: ‎03-15-2015

Has anyone seen this before. - Vyatta Firewall IN OUT on interfaces reversed?

Hello all, i have a Vyatta ver 6.7R7 displaying the most bizzare behaviour. 

 

it seems that any firewall rule i create with a destinatoin address doesn't work unless i put it on OUT instead of IN which makes no sense to me. the rule below when set on the appropriate interface as IN doesn't do anything, yet when i put this rule set on the interface as OUT is does its job. I don't get it. Does anyone have any insights?

 

rule 11 {
action reject
destination {
address 10.114.66.112
port 22
}
protocol tcp_udp

}

Brocadian
Posts: 44
Registered: ‎02-09-2015

Re: Has anyone seen this before. - Vyatta Firewall IN OUT on interfaces reversed?

Are you using NAT?

 

Are any of the interfaces that you are targeting or orginating from on the vRouter?

 

Can you provide more of the configuration?

New Contributor
Posts: 2
Registered: ‎03-15-2015

Re: Has anyone seen this before. - Vyatta Firewall IN OUT on interfaces reversed?

turns out my understanding of IN and OUT was flawed. Once it was explained to me that the way i understood it was backward it made sense and the sky stopped falling.

 

thanks 

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.