Ok, I do see some rules appear in iptables when I enter them in zentyal firewall, so it isn't all bad.
But I cannot make external network access zentyal administration (port 443). In fact, I can't get any http or https access to neither zentyal nor to the internal network. I have added these rules:
Internal networks to Zentyal:
ACCEPT, any source, Zentyal Administration [this works. didn't work after reboot (connection established, but no data received)]
ACCEPT, any source, Desktop Services [this works. didn't work after reboot (connection established, but no data received)]
Internal networks:
ACCEPT, any source, dhcp (udp: sp:67, dp:68) [works. works after reboot]
External networks to Zentyal:
ACCEPT, any source, Zentyal Administration (port 443) [no connection. didn't work after reboot]
ACCEPT, any source, HTTP (port 80) [no connection. didn't work after reboot]
External networks to internal networks:
ACCEPT, any source, any destination, Zentyal Administration (port 443) [no connection. didn't work after reboot]
ACCEPT, any source, any destination, HTTP (port 80) [no connection. didn't work after reboot]
Traffic coming out from Zentyal:
- (no rules)
In iptables, I do see port 443/80 rules in the INPUT and FORWARD sections, but only iglobal matches packets. Why wouldn't forwarding rules match the 80/443 ports?