[Cooker-firewall] Problems getting MNF 9 to access the internet

Mon, 09 Dec 2002 09:13:53 -0800

Title: Message
Hi @ll:
 
The only way I can get at the admin interface is to "shorewall clear". When I ping by name & ip it works from the firewall but not from the pc. But by ip I can surf when I do the "shorewall clear". Here is a copy of the command grep -v ^# /etc/shorewall/{zones,interfaces,masq,policy,rules} |grep -v ^$ > /root/output.txt" and my /var/log/messages as well. Can someone PLEASE help me get this thing working? Am I missing something here?

Thanks Dean

 
/etc/shorewall/zones:
/etc/shorewall/zones:
/etc/shorewall/zones:lan        LAN     local_area_network
/etc/shorewall/zones:dmz        DMZ     demilitarized_zone
/etc/shorewall/zones:wan        NET     internet
/etc/shorewall/interfaces:
/etc/shorewall/interfaces:
/etc/shorewall/interfaces:lan   eth0    detect  
/etc/shorewall/masq:
/etc/shorewall/masq:
/etc/shorewall/masq:
/etc/shorewall/policy:
/etc/shorewall/policy:
/etc/shorewall/policy:lan       all     REJECT  info
/etc/shorewall/policy:dmz       all     REJECT  info
/etc/shorewall/policy:fw        all     REJECT  info
/etc/shorewall/policy:wan       all     DROP    info
/etc/shorewall/policy:all       all     REJECT  info
/etc/shorewall/rules:
/etc/shorewall/rules:
/etc/shorewall/rules:ACCEPT     fw      wan     tcp     53      -       
/etc/shorewall/rules:ACCEPT     fw      wan     udp     53      -       
/etc/shorewall/rules:ACCEPT     dmz     wan     udp     53      -       
/etc/shorewall/rules:ACCEPT     lan     wan     udp     53      -       
/etc/shorewall/rules:REJECT     wan     fw      tcp     113     -       
/etc/shorewall/rules:ACCEPT     lan     fw      tcp     22      -       
/etc/shorewall/rules:ACCEPT     lan     fw      tcp     8443    -       
/etc/shorewall/rules:ACCEPT     fw      lan     icmp    8       -       
/etc/shorewall/rules:ACCEPT     lan     fw      icmp    8       -       
/etc/shorewall/rules:ACCEPT     lan     dmz     icmp    8       -       
/etc/shorewall/rules:ACCEPT     dmz     lan     icmp    8       -       
/etc/shorewall/rules:ACCEPT     dmz     fw      icmp    8       -       
/etc/shorewall/rules:ACCEPT     fw      dmz     icmp    8       -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     pop3    -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     smtp    -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     http    -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     https   -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     ssh     -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     ftp     -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     nntp    -       
/etc/shorewall/rules:ACCEPT     lan     wan     tcp     imap    -       
/etc/shorewall/rules:ACCEPT     fw      wan:20022       tcp     ftp     -

Reply via email to