/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ raf wrote: > Jake Colman wrote: > > > I am using the ipchains ruleset from TrinityOS and cannot get ypbind to > > work. It insists on doing a broadcast on my EXTIF which, of course, is being > > rejected. Is there something I should be doing for this to work? > > don't put your nis server outside your firewall unless it is behind another > firewall. if it is behind another firewall, change the rules of the internal > firewall to allow the packets. the packets logs should tell you what rules > you need to add. i think this will not be easy. rpc is used so there could be all sorts of udp packets traversing the firewall and you might not be able to predict them which means allowing lots of udp (= bad) so make sure they are only allowed from the nis server host and nowhere else. but i'd strongly recommend not having your nis server outside the firewall if at all possible. raf _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
