Hey,
I'm trying to forward www, named, pop3, smtp, and
squid to an internal server. I have a linux
firewall/masqer with our office
lan behind it. I want to put the web/mail/etc
server behind it. If I telnet to a forwarded port
on the gw, it just sits there until it times out
like it isn't listening on that port.
I've set the following rules:
extip="our external ip address"
server="ip of internal server"
# Clear all rules
ipportfw -C
# Forward HTTP
ipportfw -A -t $extip/80 -R $server/80
# Forward POP3
ipportfw -A -t $extip/110 -R $server/110
ipportfw -A -u $extip/110 -R $server/110
# Forward SMTP
ipportfw -A -t $extip/25 -R $server/25
# Forward BIND
ipportfw -A -t $extip/53 -R $server/53
ipportfw -A -u $extip/53 -R $server/53
# Forward SQUID
ipportfw -A -t $extip/3128 -R $server/3128
ipportfw -A -u $extip/3130 -R $server/3130
For testing, I set all ipfwadm to default accept on everything with no other
rules.
netsat -a on the gw while I'm telnetted to port 25 on it shows this:
Active Internet connections (including servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:telnet *:* LISTEN
tcp 0 0 *:ftp *:* LISTEN
tcp 0 0 *:netstat *:* LISTEN
raw 0 0 *:1 *:*
Active UNIX domain sockets (including servers)
Proto RefCnt Flags Type State I-Node
Path
unix 2 [ ] STREAM
249 /dev/log
unix 2 [ ] STREAM CONNECTED 247
unix 2 [ ] STREAM
239 /dev/log
unix 2 [ ] STREAM CONNECTED 238
unix 1 [ ACC ] STREAM LISTENING 232
/dev/log
Anyone have any idea why this isn't working?
Thanks,
John
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
