I'm trying to add a rule to an existing iptables firewall from the command line. The rule is to allow forwarding of traffic from a backup server to a virtualised fileserver. I ran the following command on the host server to allow forarding through the firewall
The command is fine BUT iptables has added it to the end of the FORWARD chain AFTER the drop command!
iptables -A FORWARD --source newbackup.mydomain.com -j ACCEPT
That of course means that the traffic from my backup server to the file server is dropped before it sees my new rule.
ACCEPT 0 -- another.mydomain.com anywhere
ACCEPT 0 -- anywhere 10.5.255.255
ACCEPT 0 -- anywhere 255.255.255.255
DROP 0 -- anywhere anywhere
ACCEPT 0 -- newbackup.mydomain.com anywhere
What did I do wrong? Can someone tell me how I should have done this? iptables isn't my strongest subject !!