Charlie Brady wrote:
>
> Change this rule:
>
> /sbin/ipchains --append forward --jump DENY
>
> to:
>
> /sbin/ipchains --append forward --jump DENY --log
>
Where do I find the --log to view?
Basically I am getting a 'Connection Refused' when trying
to telnet.
Here is my client set up, which is just for testing at
the moment. They have a dynamic DSL internet connection.
Today there IP is 66.50.31.95
Their DSL modem/bridge today uses 66.50.31.95 on the ext interface
and 192.168.0.1 on the internal interface. This then connects
to the external interface of the e-smith set at 192.168.0.2.
Again, this is not permanent, just for testing.
The e-smith is set as follows:
EXTERNAL IP = 192.168.0.2
INTERNAL IP = 192.168.1.1
Citirx is set as follows:
CITRIX IP = 192.168.1.10
As mentioned, this is what I need to work:
Port 1494 for TCP/IP is opened.
Port 1604 for UDP is open Inbound on the firewall.
Port 1023 and above are opened for TCP and UDP outbound.
To test, I can telnet to 66.50.31.95 and access the e-smith server.
I can open a telnet session via the e-smith command line as such:
telnet 192.168.1.10 1494 and Citrix responds immediately with
"ICA ICA ICA...."
If I try to telnet to 192.168.0.2 1494 I get 'Connection Refused'.
If I try to telnet to 192.168.0.2 110 I get the e-smith POP server.
Does this not tell me that port forwarding is not working as it
should?
If anyone can provide help in solving this we will have a happy
e-smith client.
Regards,
Darrell
