Hi.
I would like to know if someone can help to understand a firewall behavior.
I've installed a EFW 2.2.beta2 with 3 interfaces. I wan to give full
internet access to some computers and restrict the rest of the LAN
clients except. For those I pretend to use the proxy hability. Proxy is
not transparent on GREEN. To do this I configured the following rules:
Zone Firewall rules
1) GREEN ORANGE <ANY>
2) ORANGE GREEN <ANY>
3) 192.168.0.35/24
192.168.0.1/24
192.168.0.254/24 GREEN <ANY>
192.168.0.2/24
192.168.0.4/24
192.168.0.150/24
Outgoing Firewall Rules
1 192.168.0.35/24
192.168.0.1/24
192.168.0.254/24
192.168.0.2/24
192.168.0.4/24
192.168.0.150/24 RED <ANY> Full Internet
Access
2) 192.168.0.35/24
192.168.0.1/24
192.168.0.254/24
192.168.0.2/24
192.168.0.4/24
192.168.0.150/24 192.168.0.253/24 <ANY>
Those are hosts that suppose to have full internet access, but when I
try to connect form host 192.168.0.1 to host placed on internet through
FTP port, the connection cannot be established. Here is the firewall log.
Jan 14 09:00:39 firewall ulogd[6305]: INPUTFW:DROP IN=br0 OUT=
MAC=00:08:54:49:d1:3f:00:20:ed:7c:f1:ed:08:00 SRC=192.168.0.1
DST=192.168.0.253 LEN=48 TOS=00 PREC=0x00 TTL=128 ID=58202 CE DF
PROTO=TCP SPT=58978 DPT=2121 SEQ=3178222469 ACK=0 WINDOW=65535 SYN URGP=0
Hope can you help me.
Regards
CC
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________
Efw-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/efw-user
