Ola Lista, Ainda estou tendo problemas na entrada das cameras. Segue abaixo as minhas regras de iptables:
iptables -A INPUT -i eth1 -p tcp --dport 3000 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3000 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 3001 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3001 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 3003 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3003 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 3005 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3005 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 3007 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3007 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 3031 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 3031 -j ACCEPT iptables -A INPUT -i eth1 -p tcp --dport 8081 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 8081 -j ACCEPT iptables -A INPUT -i eth1 -p udp --dport 8081 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 8081 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 8081 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3000 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3000 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3001 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3001 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3003 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3003 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3005 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3005 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3007 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3007 -j ACCEPT iptables -A FORWARD -p tcp -i eth1 -d 192.168.0.xxx --dport 3130 -j ACCEPT iptables -A FORWARD -p udp -i eth1 -d 192.168.0.xxx --dport 3130 -j ACCEPT iptables -t nat -A PREROUTING -p tcp -d 200.xxx.xxx.xxx --dport 8081 -j DNAT --to-destination 192.168.0.xxx:8081 iptables -t nat -A PREROUTING -p udp -d 200.xxx.xxx.xxx --dport 8081 -j DNAT --to-destination 192.168.0.xxx:8081 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3000 -j DNAT --to-destination 192.168.0.xxx:3000 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3000 -j DNAT --to-destination 192.168.0.xxx:3000 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3001 -j DNAT --to-destination 192.168.0.xxx:3001 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3001 -j DNAT --to-destination 192.168.0.xxx:3001 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3003 -j DNAT --to-destination 192.168.0.xxx:3003 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3003 -j DNAT --to-destination 192.168.0.xxx:3003 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3005 -j DNAT --to-destination 192.168.0.xxx:3005 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3005 -j DNAT --to-destination 192.168.0.xxx:3005 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3007 -j DNAT --to-destination 192.168.0.xxx:3007 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3007 -j DNAT --to-destination 192.168.0.xxx:3007 iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 3130 -j DNAT --to-destination 192.168.0.xxx:3130 iptables -t nat -A PREROUTING -p udp -i eth1 --dport 3130 -j DNAT --to-destination 192.168.0.xxx:3130 Quando executo o iptables -L, tenho a seguinte resposta: Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:3000 ACCEPT udp -- anywhere anywhere udp dpt:3000 ACCEPT tcp -- anywhere anywhere tcp dpt:3001 ACCEPT udp -- anywhere anywhere udp dpt:3001 ACCEPT tcp -- anywhere anywhere tcp dpt:3003 ACCEPT udp -- anywhere anywhere udp dpt:3003 ACCEPT tcp -- anywhere anywhere tcp dpt:3005 ACCEPT udp -- anywhere anywhere udp dpt:3005 ACCEPT tcp -- anywhere anywhere tcp dpt:3007 ACCEPT udp -- anywhere anywhere udp dpt:3007 ACCEPT tcp -- anywhere anywhere tcp dpt:3031 ACCEPT udp -- anywhere anywhere udp dpt:3031 ACCEPT tcp -- anywhere anywhere tcp dpt:tproxy ACCEPT udp -- anywhere anywhere udp dpt:8081 ACCEPT udp -- anywhere anywhere udp dpt:8081 ACCEPT 0 -- anywhere anywhere ACCEPT udp -- anywhere anywhere udp dpts:bootps:bootpc ACCEPT udp -- anywhere anywhere udp spt:domain state ESTABLISHED ACCEPT udp -- anywhere anywhere udp dpt:domain ACCEPT tcp -- anywhere anywhere tcp spt:domain state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:domain ACCEPT tcp -- anywhere anywhere tcp dpt:43960 ACCEPT udp -- anywhere anywhere udp dpt:43960 ACCEPT tcp -- anywhere anywhere tcp spt:www state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp spt:https state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:www ACCEPT tcp -- anywhere anywhere tcp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:ftp ACCEPT tcp -- anywhere anywhere tcp spt:ftp-data state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp spts:1025:65535 dpts:1025:65535 state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED Chain FORWARD (policy DROP) target prot opt source destination ACCEPT 0 -- anywhere anywhere ACCEPT 0 -- anywhere anywhere ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:tproxy ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:8081 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3000 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3000 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3001 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3001 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3003 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3003 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3005 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3005 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3007 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3007 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:icpv2 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:icpv2 Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT 0 -- anywhere anywhere scrosoppi:~# scrosoppi:~# vi /etc/rc0.d/S99scrosoppi scrosoppi:~# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:3000 ACCEPT udp -- anywhere anywhere udp dpt:3000 ACCEPT tcp -- anywhere anywhere tcp dpt:3001 ACCEPT udp -- anywhere anywhere udp dpt:3001 ACCEPT tcp -- anywhere anywhere tcp dpt:3003 ACCEPT udp -- anywhere anywhere udp dpt:3003 ACCEPT tcp -- anywhere anywhere tcp dpt:3005 ACCEPT udp -- anywhere anywhere udp dpt:3005 ACCEPT tcp -- anywhere anywhere tcp dpt:3007 ACCEPT udp -- anywhere anywhere udp dpt:3007 ACCEPT tcp -- anywhere anywhere tcp dpt:3031 ACCEPT udp -- anywhere anywhere udp dpt:3031 ACCEPT tcp -- anywhere anywhere tcp dpt:tproxy ACCEPT udp -- anywhere anywhere udp dpt:8081 ACCEPT udp -- anywhere anywhere udp dpt:8081 ACCEPT 0 -- anywhere anywhere ACCEPT udp -- anywhere anywhere udp dpts:bootps:bootpc ACCEPT udp -- anywhere anywhere udp spt:domain state ESTABLISHED ACCEPT udp -- anywhere anywhere udp dpt:domain ACCEPT tcp -- anywhere anywhere tcp spt:domain state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:domain ACCEPT tcp -- anywhere anywhere tcp dpt:43960 ACCEPT udp -- anywhere anywhere udp dpt:43960 ACCEPT tcp -- anywhere anywhere tcp spt:www state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp spt:https state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:www ACCEPT tcp -- anywhere anywhere tcp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:ftp ACCEPT tcp -- anywhere anywhere tcp spt:ftp-data state RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp spts:1025:65535 dpts:1025:65535 state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED Chain FORWARD (policy DROP) target prot opt source destination ACCEPT 0 -- anywhere anywhere ACCEPT 0 -- anywhere anywhere ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:tproxy ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:8081 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3000 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3000 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3001 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3001 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3003 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3003 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3005 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3005 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:3007 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:3007 ACCEPT tcp -- anywhere 192.168.0.xxx tcp dpt:icpv2 ACCEPT udp -- anywhere 192.168.0.xxx udp dpt:icpv2 Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT 0 -- anywhere anywhere Tenho essas mesmas regras em uma outra rede, para acessar um micro interno e funciona. O que pode ser ?? Marcus Vinicius Gonçalves Suporte em Informática Linux user 228081 ----- Original Message ----- From: "Wenderson Souza" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Monday, January 14, 2008 7:59 AM Subject: Re: (linux-br) acessar webcam fora da rede --------------------------------------------------------------------------- Esta lista é patrocinada pela Conectiva S.A. Visite http://www.conectiva.com.br Arquivo: http://bazar2.conectiva.com.br/mailman/listinfo/linux-br Regras de utilização da lista: http://linux-br.conectiva.com.br FAQ: http://www.zago.eti.br/menu.html
