Hello Folks,
Uncertain which mailing list is the correct and active one, so I'm
posting to both. I'm trying to get voice over IP working between two
boxes; each is behind a basic EigerStein LRP box, both configured as
firewalls. Almost all ports on both boxes are closed. One of the
boxes is a Debian 2.2r2 box, running OpenH323 and GnomeMeeting 0.85;
the other is an NT 4.0 box running NetMeeting 3.01. I've configured
a third box, behind the same firewall as the NT machine, to act as an
ILS server for the NT machine. The problem is that I can't seem to
get the necessary ports opened up on these boxes so that traffic will
go through on them. I have the following configuration for the
INTERN_SERVERS variable in /etc/network.conf on each machine, but no
matter what, when we attempt connections, I find DENY log messages
on these ports.
INTERN_SERVERS="udp_${EXTERN_IP}_389_192.168.1.16_389
udp_${EXTERN_IP}_522_192.168.1.16_522
udp_${EXTERN_IP}_1503_192.168.1.128_1503
udp_${EXTERN_IP}_1720_192.168.1.128_1720
udp_${EXTERN_IP}_1731_192.168.1.128_1731
tcp_${EXTERN_IP}_389_192.168.1.16_389
tcp_${EXTERN_IP}_522_192.168.1.16_522
tcp_${EXTERN_IP}_1503_192.168.1.128_1503
tcp_${EXTERN_IP}_1720_192.168.1.128_1720
tcp_${EXTERN_IP}_1731_192.168.1.128_1731
tcp_${EXTERN_IP}_8080_192.168.1.2_8080
udp_${EXTERN_IP}_8080_192.168.1.2_8080"
I even suspected that there might be some problem with trying
to open up privileged ports with this technique, so I tried adding
the following line to /etc/network.conf:
INTERN_LDAP_SERVER=192.168.1.16 # Internal LDAP server to make available
and these lines in /etc/ipfilter.conf:
if [ -n "$INTERN_LDAP_SERVER" ] ; then
$IPMASQADM portfw -a -P tcp -L $EXTERN_IP ldap -R $INTERN_LDAP_SERVER
ldap
fi
What am I doing wrong? The INTERN_WWW_SERVER and INTERN_SMTP_SERVER
stuff works properly, but this same code *doesn't* work for port 389.
What's that all about? I *know* there have to be other people doing
the VoIP thing through LRP machines; has anyone written a HowTo?
best,
Jim Wiggs
James Wiggs
Email: [EMAIL PROTECTED]
ICBM: 97 30 18 W, 42 52 27 N
_______________________________________________________________
Don't miss the 2002 Sprint PCS Application Developer's Conference
August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
