--On Thursday, December 26, 2002 5:22 PM -0800 Scott <[EMAIL PROTECTED]> wrote:
For answers to your port forwarding questions, see Shorewall FAQs 1, 1a and 1b (Observation: your ACCEPT rules are all superfluous).Hi, I have bering 1.0 firewall and I can't forward port 23 and 21 to a server inside my network. I can connect internally on the network, so I'm sure it's something with the firewall. I have no problem forwarding a bunch of other ports (not sure of my method, but it's working):/etc/shorewall/rules: ACCEPT net loc1:192.168.200.254 tcp 24,25,80,110,143,443 DNAT net loc1:192.168.200.254 tcp 24,25,80,110,143,443 ACCEPT net loc1:192.168.200.2 tcp 21,10000 DNAT net loc1:192.168.200.2 tcp 21,10000 ACCEPT net loc1:192.168.200.3 tcp 23 DNAT net loc1:192.168.200.3 tcp 23 ACCEPT net loc1:192.168.200.3:21 tcp 26 DNAT net loc1:192.168.200.3:21 tcp 26 I can't connect to the 2nd server (.200.2) ftp or the 3rd server (.200.3) telnet. Is there some trick to forward these ports, or a special module: /etc/shorewall/modules: loadmodule ip_tables loadmodule iptable_filter loadmodule ip_conntrack loadmodule ip_conntrack_ftp loadmodule ip_conntrack_irc loadmodule iptable_nat loadmodule ip_nat_ftp loadmodule ip_nat_irc
I don't believe that Bering relies on Shorewall's 'modules' file at all -- for one thing, the default setting of MODULESDIR in shorewall.conf doesn't work at all with Bering.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.sf.net
Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
