Ian, If you don't mind using a different firewall, you could use firestarter which, in addition to masquerading, etc. also handles port forwarding. I implemented this myself not last night. Very nice, and it's included on the Download Edition CDs.
I'm not sure how to accomplish this with Bastille. From the commandline, though, I understand it's not too difficult. You use the DNAT abilities of iptables. Something like this: iptables -t nat -A PREROUTING -i ppp0 -p tcp -dport 5900 -j DNAT -to 192.168.0.101:5900 VNC listens on 59xx where xx is the screen, so you should probably do it for 5900 and 5901 both. By the way, port 80 is only for HTTP. SSH uses 21 or 22 (can't remember, exactly). Miark "Ian K.Harrell" <[EMAIL PROTECTED]> saith: <snip> > I need to set up some type of port forwarding so that a connection can be made > from the internet to the Mandrake firewall and then is redirected to one of > the windoze machines. The specific machine has an ip addy of 192.168.0.101 and > the mandrake machine is at 192.168.0.1. The Internet address is assigned > dynamically on interface ppp0. The specific program that i need access to on > the windows machine is the VNC server which i think listens on port 5500. > > What rules do i need to add to the firewall to do this? The current firewall > was set up and configured with Interactive Bastille with the only ports being > open to the internet interface being 80 for apache and ssh. <snip> > > Thanks much, > Ian K. Harrell > [EMAIL PROTECTED]
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
