sorry... Ok...I've got a C-Strike server on the outside of my network, unmanaged by anything. It is fowarding log files/info from port 27016 to a remote www server on port 2002 inside the NAT'd DMZ.
----- Original Message ----- From: Charles Steinkuehler <[EMAIL PROTECTED]> To: Alec Miller <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Friday, November 16, 2001 8:07 AM Subject: Re: [Leaf-user] dmzSpoof > I've got Dachstein RC5 running and trying to put the final touches on it. > > I've got a Counter-Strike server spitting into to another server inmy DMZ. > I've tried to open this port to allow the info to pass thru into the DMZ but > for some reason I just can't figure this one out. > > I've tried opening the port up but............. > > router kernel: Packet log: dmzSpoof DENY eth0 PROTO=17 64.1.132.140:27016 > 64.1.132.143:2002 More details, please. What sort of DMZ are you trying to setup? In general, the dmzSpoof rule denies packets from the outside world that should have come from the DMZ. If you've got a block of IP's and are running a proxy-arp or static-NAT DMZ, you probably have a problem with DMZ_EXT_ADDRS, which is how the firewall rules know which IP's are on which side of the router. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
