christophe savigny wrote: > i installed Shorewall (Version�: 4.0.15-1~bpo40+1) on a debian server. > i also installed transmission-cli (bittorent client). > the incoming tcp port for transmission-cli is 51413 but i have dropped > packets on this port. > You can see below the logs: > > Apr 4 20:27:11 ps75dmz01 kernel: Shorewall:INPUT:DROP:IN=eth0 OUT= > MAC=00:c0:4f:56:c9:eb:00:07:cb:23:27:c5:08:00 SRC=88.177.194.63 > DST=192.168.42.92 LEN=52 TOS=0x00 PREC=0x00 TTL=120 ID=32216 DF > PROTO=TCP SPT=61620 DPT=51413 WINDOW=8192 RES=0x00 SYN URGP=0 > > In the file /etc/shorewall/rules, i get this line: > > BitTorrent/ACCEPT all $FW > > My debian server is connected on my LAN. > My router doesn't block the packets because my debian server drop it. > > Can you help me please? where is the mistake?
Hopefully you have installed Shorewall-perl rather than the default 'shorewall' package that includes the legacy Shorewall-shell compiler. Regardless, the fact that the packets are being rejected out of the INPUT chain usually indicates that eth0:88.177.194.63 is not in any of your defined zones. Please see http://www.shorewall.net/support.htm#Guidelines if you need to post again. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
