If you create a rule any any in load balancing, astaro creates wrong iptables rules and the firewall is necessarily bricked for anything useful. The only access you will have is from console. At that point you either have to delete the iptables rules (don't know if possible) or do a factory reset (if you know how to do it from command line).
Do not test this at home unless you want to factory reset /rebuild your machine!
Screenshot 1: Create a any any rule in load balancing pointing to astaro.com and astaro.org
Screenshot 2: Netfilter auto_forward has a rule all-->anywhere to the servers defined in load balancing setup without any other conditions. This rule is applied before any other ssh/webadmin rules.
This causes any traffic (all protocols) including ssh/webadmin to be redirected to the IPs defined in load balancing. Which in turn puts astaro in a state where it is not available for any services at all.
Guest User!
You are not Sophos Staff.
