Re: [Shorewall-users] DNAT behaves like DNAT-

Wed, 06 Jul 2011 14:22:58 -0700 

And here with the explicit SSH rule:

    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            192.168.1.2 
         tcp dpt:22 ctorigdstport 14027 ctorigdst 62.143.214.30
    1    60 ACCEPT     tcp  --  *      *       0.0.0.0/0            192.168.1.2 
         tcp dpt:22 /* SSH */

This "ctorigdstport 14027" shouldn't happen, isn't it?

----- Ursprüngliche Mail -----
Von: "Tom Eastep" <[email protected]>
An: "Shorewall Users" <[email protected]>
Gesendet: Mittwoch, 6. Juli 2011 23:12:32
Betreff: Re: [Shorewall-users] DNAT behaves like DNAT-


On Wed, 2011-07-06 at 14:05 -0700, Tom Eastep wrote: 


On Wed, 2011-07-06 at 22:20 +0200, Alexander Wilms wrote: 





SW:net2loc0:DROP:IN=eth1 OUT=eth0 SRC=85.182.238.98 DST=192.168.1.2 LEN=60 
TOS=0x00 PREC=0x00 TTL=57 ID=36614 DF PROTO=TCP SPT=43415 DPT=22 WINDOW=4380 
RES=0x00 SYN URGP=0 


Please post the output of 'shorewall show net2loc0' (or net-loc0 if use use 
ZONE2ZONE="-") without the extra ACCEPT rule. My tests here show that the 
correct ACCEPT rule is getting created. 

Duh -- the name 'net2loc0' appears in the log message you posted... 

-Tom 
        -- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car http://shorewall.net 
\________________________________________________ 
------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security 
threats, fraudulent activity, and more. Splunk takes this data and makes 
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2d-c2
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security 
threats, fraudulent activity, and more. Splunk takes this data and makes 
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2d-c2
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to