Konfigurasyonda sorun gorunmuyor. Peki 0.8'in default gateway'i fw mu? Degilse default gateway'i fw yapip oyle deneyin.
On Tue, Jul 06, 2004 at 10:47:39AM +0300, ahmet orhan wrote: > Hocam merhaba > > dosyalar ekte > > ipf rule dosyas?? iki tane. ??kisini de denedim. > > > > > On Tue, 2004-07-06 at 10:09, Murat Balaban wrote: > > Ilgili ipf ve ipnat rule'larini, ifconfig ciktisini, netstat -rn ciktisini > > telnet 192.168.0.8 10000 ciktisini yollar misiniz? > > > > Bir de, 192.168.0.8'in defatult gateway'i ne? > > > > > > On Tue, Jul 06, 2004 at 10:09:16AM +0300, ahmet orhan wrote: > > > dediklerinizi yapt??m. > > > bir??ok deneme yapt??m fakat olmad??. > > > > > > > > > On Tue, 2004-07-06 at 09:58, Murat Balaban wrote: > > > > Selamlar, > > > > > > > > fxp1 dis arabiriminiz degil mi? Yani 213... lu ipnizin bind oldugu interface? > > > > 1. Degilse oyle olmasi lazim. > > > > 2. Oyleyse, dis interface'de 213.194.113.66 port 10000'e izin vermelisiniz. > > > > 3. local interface'de de out 192.168.0.8 port 10000'e izin vermelisiniz. > > > > > > > > paket fxp1 den geldiginde dst ip 213...lu olacaktir, ama ipfilter bunu > > > > re-write edip (dst'sini 192.... yapip) local interface'e inject edecektir. > > > > > > > > Bu sekilde calismasi lazim. > > > > > > > > > > > > On Tue, Jul 06, 2004 at 09:09:39AM +0300, ahmet orhan wrote: > > > > > Merhabalar. > > > > > > > > > > rdr fxp1 213.194.113.66/32 port 10000 -> 192.168.0.8 port 10000 > > > > > > > > > > bu rule sayesinde internet arabiriminden (fxp1) gelen istekler yerel > > > > > a??daki ba??ka bir makinaya y??nlendirilmesi gerekir. Fakat ??al????m??yor. > > > > > > > > > > ipf den gerekli izinleri verdim. > > > > > ipnat.rules de bulunan di??er sat??rlar?? devre d?????? b??rakt??m. > > > > > ip forwarding a????k. > > > > > olmad??. > > > > > > > > > > > > > > > ayn?? olay?? 192.168.0.10 nolu makinede (bu ipnat/ipf makinas??) > > > > > ??al??????yor > > > > > ama yerel a??dan ba??ka bir yere y??nlendirme yapm??yor. > > > > > > > > > > rdr fxp1 213.194.113.66/32 port 10000 -> 192.168.0.10 port 80 ok. > > > > > > > > > > Bunun i??in DMZ uygulamas??na m?? ge??mek gerek. Yani 3. bir ethernet kart?? > > > > > taksam ve y??nlerdirmeyi buradaki bir bilgisayara yapsam. (S??ylece??ine > > > > > yap dene diyebilirsiniz ama rock'?? ??yle bi oturtmu??um ki kabine s??kmek > > > > > de zorlan??yorum :-) ) > > > > > > > > > > > > > > > --------------------------------------------------------------------- > > > > > Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. > > > > > http://www.acikkod.com/freebsd.php > > > > > > > > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > > > > Liste arsivi: http://lists.enderunix.org ve > > > > > http://www.mail-archive.com/[EMAIL PROTECTED] > > > > > > > > > > > > > > > > > > > --------------------------------------------------------------------- > > > Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. > > > http://www.acikkod.com/freebsd.php > > > > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > > Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL > > > PROTECTED] > > > > > > > > ifconfig > fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 192.168.0.10 netmask 0xffffff00 broadcast 192.168.0.255 > inet6 fe80::2e0:81ff:fe21:3fc2%fxp0 prefixlen 64 scopeid 0x1 > ether 00:e0:81:21:3f:c2 > media: Ethernet autoselect (100baseTX <full-duplex>) > status: active > fxp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet 213.194.113.66 netmask 0xfffffff0 broadcast 213.194.113.79 > inet6 fe80::2e0:81ff:fe21:3fc3%fxp1 prefixlen 64 scopeid 0x2 > ether 00:e0:81:21:3f:c3 > media: Ethernet autoselect (100baseTX <full-duplex>) > status: active > lp0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> mtu 1500 > faith0: flags=8002<BROADCAST,MULTICAST> mtu 1500 > lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384 > inet6 ::1 prefixlen 128 > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 > inet 127.0.0.1 netmask 0xff000000 > ppp0: flags=8010<POINTOPOINT,MULTICAST> mtu 1500 > sl0: flags=c010<POINTOPOINT,LINK2,MULTICAST> mtu 552 > > # > # ipf.rules > # > # fxp0 LAN Network > # fpx1 EXT Network > > #loopback sunucu ici izin ver > pass in quick on lo0 all > pass out quick on lo0 all > # > > # Yerel ag giris ve cikislara izin ver > pass in quick on fxp0 all > pass out quick on fxp0 all > # > > pass in quick on fxp1 all > pass out quick on fxp1 all > > > > netstat -rn > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif Expire > default 213.194.113.65 UGSc 7 60069 fxp1 > 127.0.0.1 127.0.0.1 UH 0 0 lo0 > 192.168.0 link#1 UC 30 0 fxp0 > 192.168.0.6 00:0d:61:26:ad:29 UHLW 0 997 fxp0 1098 > 192.168.0.8 00:08:a1:2a:c3:12 UHLW 3 4581 fxp0 1069 > 192.168.0.10 00:e0:81:21:3f:c2 UHLW 0 133 lo0 > 192.168.0.11 00:02:55:aa:ae:86 UHLW 1 604 fxp0 1191 > 192.168.0.12 00:0d:61:2b:9c:b4 UHLW 0 32 fxp0 1119 > 192.168.0.31 00:0e:a6:6c:18:de UHLW 1 22721 fxp0 1196 > 192.168.0.50 00:50:fc:41:a2:2e UHLW 0 264 fxp0 117 > 192.168.0.56 00:02:3f:93:a3:e6 UHLW 0 111 fxp0 1104 > 192.168.0.57 00:80:ad:00:d7:66 UHLW 0 316 fxp0 987 > 192.168.0.60 00:ee:b1:04:04:54 UHLW 0 460 fxp0 678 > 192.168.0.64 00:0a:95:cc:42:f8 UHLW 1 47425 fxp0 827 > 192.168.0.66 00:30:65:64:db:96 UHLW 0 18 fxp0 868 > 192.168.0.72 00:08:a1:2c:9a:36 UHLW 0 592 fxp0 966 > 192.168.0.74 00:00:8c:01:08:89 UHLW 1 4929 fxp0 1054 > 192.168.0.82 00:80:ad:76:78:08 UHLW 1 366 fxp0 1156 > 192.168.0.100 00:08:a1:27:89:f6 UHLW 0 1640 fxp0 862 > 192.168.0.104 00:10:60:5c:07:f9 UHLW 0 16 fxp0 185 > 192.168.0.106 00:08:a1:27:8b:4b UHLW 0 832 fxp0 717 > 192.168.0.135 00:06:5b:65:2f:91 UHLW 1 3440 fxp0 1068 > 192.168.0.138 00:06:5b:65:2f:bf UHLW 0 119 fxp0 1019 > 192.168.0.171 00:07:e9:0a:37:f2 UHLW 0 1744 fxp0 932 > 192.168.0.176 00:04:75:e3:53:db UHLW 1 13827 fxp0 1097 > 192.168.0.178 00:02:44:65:25:f5 UHLW 1 260 fxp0 1010 > 192.168.0.183 00:50:bf:19:a8:4d UHLW 0 2975 fxp0 983 > 192.168.0.188 00:0d:61:28:83:09 UHLW 0 852 fxp0 145 > 192.168.0.192 00:0d:61:2b:77:1b UHLW 0 18 fxp0 941 > 192.168.0.193 00:00:f8:04:ed:75 UHLW 0 1545 fxp0 > 192.168.0.223 00:50:fc:41:a2:67 UHLW 0 41 fxp0 345 > 192.168.0.225 00:05:1c:09:53:1a UHLW 0 564 fxp0 1090 > 192.168.0.255 ff:ff:ff:ff:ff:ff UHLWb 1 1885 fxp0 > 213.194.113.64/28 link#2 UC 2 0 fxp1 > 213.194.113.65 00:60:97:8f:70:ab UHLW 1 0 fxp1 1196 > 213.194.113.66 00:e0:81:21:3f:c3 UHLW 0 7308 lo0 > > Internet6: > Destination Gateway Flags Netif > Expire > ::1 ::1 UH lo0 > fe80::%fxp0/64 link#1 UC fxp0 > fe80::2e0:81ff:fe21:3fc2%fxp0 00:e0:81:21:3f:c2 UHL lo0 > fe80::%fxp1/64 link#2 UC fxp1 > fe80::2e0:81ff:fe21:3fc3%fxp1 00:e0:81:21:3f:c3 UHL lo0 > fe80::%lo0/64 fe80::1%lo0 Uc lo0 > fe80::1%lo0 link#5 UHL lo0 > ff01::/32 ::1 U lo0 > ff02::%fxp0/32 link#1 UC fxp0 > ff02::%fxp1/32 link#2 UC fxp1 > ff02::%lo0/32 ::1 UC lo0 > ayman:~/.wine/fake_windows/Program Files/RiteRecovery # telnet 192.168.0.8 10000 > Trying 192.168.0.8... > Connected to 192.168.0.8. > Escape character is '^]'. > > > --------------------------------------------------------------------- > Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. > http://www.acikkod.com/freebsd.php > > To unsubscribe, e-mail: [EMAIL PROTECTED] > Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL > PROTECTED] -- Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. http://www.acikkod.com/freebsd.php --------------------------------------------------------------------- Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. http://www.acikkod.com/freebsd.php To unsubscribe, e-mail: [EMAIL PROTECTED] Liste arsivi: http://lists.enderunix.org ve http://www.mail-archive.com/[EMAIL PROTECTED]
