/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
[EMAIL PROTECTED] wrote:
> my setup
> i have an internal lan running on the 192.168.0. subnet with ipmasq
> running on the firewall. and it is rejecting all traffic by default. i
> have a nis server on the internal subnet, and i want to allow the firewall
> to connect to the nisserver via the internal interface eth1. my problem is
> that i'm not quite sure which ports i need to allow. does anyone have this
> information?
>
> ie
> what port does ypserv recieve request on, and what port does it return
> them on?
i don't think it's as simple as that (or they'd be listed in /etc/services :)
it's based on rpc which means you've no idea (in general) what ports are used.
rpc services register themselves with the portmapper and then clients ask the
portmapper which port to connect to for a given service.
i'd suggest making the internal interface trusted (if that's an option):
ipchains -A input -i eth1 -J ACCEPT
ipchains -A output -i eth1 -J ACCEPT
if that's not an option, then don't use nis on your firewall host.
raf
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
