[Shorewall-users] Debian Lenny RDP Problem

Thu, 11 Feb 2010 11:24:05 -0800 

I am moving from CentOS to Debian Lenny using shorewall 4.4.6.

I am having a problem with local clients connecting to RDP servers on the
internet.

Local Client: 172.16.1.21
My Public IP: 4.4.4.149
RDP Server: 216.128.128.135

TCP Dump shows the connection is taking place:
03:26:33.275326 IP 172.16.1.21.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:33.275352 IP 4.4.4.149.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:33.276060 IP 216.128.128.135.3389 > 4.4.4.149.53936: R 0:0(0) ack
1635877778 win 0
03:26:33.276077 IP 216.128.128.135.3389 > 172.16.1.21.53936: R 0:0(0) ack
1635877778 win 0
03:26:33.719204 IP 172.16.1.21.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:33.719225 IP 4.4.4.149.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:33.719788 IP 216.128.128.135.3389 > 4.4.4.149.53936: R 0:0(0) ack 1
win 0
03:26:33.719803 IP 216.128.128.135.3389 > 172.16.1.21.53936: R 0:0(0) ack 1
win 0
03:26:34.222136 IP 172.16.1.21.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:34.222154 IP 4.4.4.149.53936 > 216.128.128.135.3389: S
1635877777:1635877777(0) win 65535 <mss 1460,nop,nop,sackOK>
03:26:34.222982 IP 216.128.128.135.3389 > 4.4.4.149.53936: R 0:0(0) ack 1
win 0
03:26:34.222997 IP 216.128.128.135.3389 > 172.16.1.21.53936: R 0:0(0) ack 1
win 0

The client does not get the connection.

iptables -L -n | grep 3389 shows this:
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:3389


Which is consistent with the rule I put at the top of my rules file:
ACCEPT    loc   net    tcp    3389    #RDP


Is this a problem with NetFilter and/or conntrack? What other information
should I provide to help resolve this?

Thanks,
Ronnie

------------------------------------------------------------------------------
SOLARIS 10 is the OS for Data Centers - provides features such as DTrace,
Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW
http://p.sf.net/sfu/solaris-dev2dev
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to