You know, you're right now that I think about it. I just had the idea stuck in my head that the internal network machines used the firewall as a gateway. But only as a gateway out to the net, the internal machines are on the same network. I apologise for my oversight. Can you suggest a list where I can discuss my problem?
Dan Matthew Hellman wrote: >I'm not familiar with those sample scripts but I'm curious why your firewall >would have anything to do with communication between two machines behind the >firewall....Unless the two devices are on different networks that are >protected by your firewall. > >Matt > >----- Original Message ----- >From: "Dan Serban" <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Sent: Thursday, March 21, 2002 12:33 AM >Subject: Internal Network Transfer Problems > > >I am realtively naive when it comes to netfilter and I am looking for a >little bit of help. I downloaded hpfirewall.tgz from >http://herbie.espong.org/filez/iptables/ and installed the example script >successfully. This seems like quite a secure setup based on others >attempts. All external accesses (computers on the internal net accessing >external internet resources) work perfectly fine, HTTP, FTP, SSH etc... I >have two boxes behind the firewall machine and I've tried tranferring files >between the two machines unsuccessfully. Any smb accesses between the two >machines start out fine but tend to crap out within a couple of minutes, I >can browse the Linux box from the Win98 box through Samba, but any file >operations fail within a few seconds/minutes. I've also setup FTP services >on both machines and each connects to the other immediately, after which >point when I start a file transfer of anything larger than 64k, the transfer >slows down and eventually slows down to a crawl and stops. Because of the >fact that I've installed such a large script I cannot even begin to diagnose >the problem here. I can access the firewall machine through SSH from both >the Win98 machine and the Linux machine with no problems. The only thing >that I've noticed of significance between the two is that when either SMB or >FTP access occur between the two internal machines, the collision light on >the hub comes on with pretty much each packet (link activity). Can someone >please help me here? Maybe where I should begin looking through the >aforementioned script? Or another script I can use to replace the current >one? As a side note, I've also tried David Ranch's rc.firewall-2.4-stronger >script and I experience the exact same issue. > >Thank you! > >Dan > > >
