viuwier wrote: > Witaj Tom, > > Dnia 6 listopada 2008 (20:53:16) > Na temat "[Shorewall-users] rules file is not working" > begin message: > >> viuwier wrote: >>> Hello >>> >>> And more informations: >>> >>> I've restarted shorewall and I've tried to connect to 83.14.53.12 > >> There is no DNAT rule for packets addressed to 82.14.53 12 -- only for >> 83.14.53.14. > > Yes, I've changed it and tried to connect to 53.14, I have few IP > adresses, but aso it is no working, now I have in rules only: > > #Maciek rules: > DNAT net loc:192.168.0.42:3389 tcp 3389 - > DNAT net loc:192.168.0.42:3389 udp 3389 - > > ACCEPT loc:192.168.0.42 net tcp 3389 - > ACCEPT loc:192.168.0.42 net udp 3389 - > >
tcp 6 103 SYN_SENT src=77.88.136.100 dst=83.14.53.12 sport=49212 dport=3389 [UNREPLIED] src=192.168.0.22 dst=77.88.136.100 sport=3389 dport=49212 use=1 The firewall has sent the SYN packet to 192.168.0.22 who has not responded. You must be changing things faster than I can read your posts since you will notice that the port was being forward to .22 in the dump you sent while now you claim to be forwarding the connections to .42. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
