vodoo,
So what I can figure, your changing rules on the default filter table. My rules are being added to the nat table. Am not quite sure why my changes only work when the iptables are flushed via iptables --flush or stopping the SuSEFirewall2 service.
Worst of all, you can not see the results of the nat table or the rules applied like you can on the filter table using iptables -S.
Does anyone have a link to a good writeup explaining the OpenSuSE implementation of SuSEFirewall2?
Unfortunately: no. Your best bet is to have a close look at the script implementing the firewall, /sbin/SuSEfirewall2. Start reading it from line 2308 (ymmv) to see where the different hooks are called to insert custom rules. Knowing this you can decide to which hook you should add your rules to get the sequence right.
What doesn’t make sense according to what I have read, packets pass thru the NAT table first before for the FILTER table. So it really shouldn’t matter what order they are entered, my 5 rules should come first since I am adding to the NAT table.
Dang Ken,
Thats some real reading. My brain is hurting… LOL
After reading some more directed sections, I am still at a loss as too why the internet request fails.
I guess I need to see if I am getting multiple request to squid indicating I am in a infinite loop. Whats even odder is that with SuSEfirewall2 off, it works fine.