William, Having an external port scanner tell you that your port 80 is should have nothing to do with you not being able to connect to an IP outside your network on port 443. Please provide the output of 'shorewall dump' in order for us to help identify the problem.
Regards, -Roberto On Sat, Mar 10, 2012 at 07:39:48AM -0600, I.S.C. William wrote: > For example, try entering this site: > > https://www.cardiologia.org.mx/ > > and brand connection error only. and I can deduce that if the firewall since > it off and if you enter the site. > > I did a test on the site: > http://www.whatsmyip.org/port-scanner/server/ > > and I mark that the port is closed least 80, and with the firewallup. > > > > 2012/3/9 Roberto C. Sánchez <[email protected]> > > > William, > > > > Can you provide more details as to how you are trying to access the > > https paages? For example, can you give an example of a URL that you > > are trying to access and what ever error or unexpected behavior you > > observe? > > > > Also, if you provide the output of 'shorewall dump' we could help with > > troubleshooting your issue. > > > > Regards, > > > > -Roberto > > > > On Fri, Mar 09, 2012 at 05:35:19PM -0600, I.S.C. William wrote: > > > I have only access checking on port 80, no other port is open, this will > > check > > > with pages that scan public IP. > > > All this happened since I upgrade to this version, with version3.4.8 had > > no > > > problem. > > > > > > any ideas? > > > > > > > > > > > > 2012/3/9 I.S.C. William <[email protected]> > > > > > > > My shorewall 3.4.8 update to 4.4.25.3 using rpm, there were no errors > > in > > > > the update, but I have a detail in the rules, myserver is a proxy > > firewall > > > > (squid / Shorewall) if I can navigate through the pages I can even > > filter > > > > it well, my details areHTTPS pages, I can not open any, which with the > > > > previousversion if you could. I have the following: > > > > > > > > shorewall/interfaces > > > > > > > > net eth1 detect nosmurfs,blacklist > > > > loc eth0 detect > > > > routefilter,blacklist,tcpflags,nosmurfs,logmartians > > > > > > > > shorewall/zone > > > > > > > > fw firewall > > > > net ipv4 > > > > loc ipv4 > > > > > > > > > > > > shorewall/policy > > > > > > > > fw all ACCEPT > > > > net all DROP > > > > loc net ACCEPT > > > > loc fw REJECT info > > > > loc all REJECT info > > > > > > > > > > > > shorewall/rules > > > > > > > > REDIRECT loc 8080 tcp 80,81,82,3128,8000,8080 > > > > ACCEPT loc net tcp 443 > > > > ACCEPT net loc tcp 443 > > > > > > > > I can answer simple rules well I filter the internet, the onlydetail is > > > > that I will not have the pages https (port 443) are well my rules? > > > > > > > > Greetings!! > > > > > > > > > > > > > > > > -- > > > > I.S.C. William López Jiménez > > > > -- > > > > User Linux # 379636 > > > > MSN [email protected] > > > > Jabber [email protected] > > > > Web: www.koalasoftmx.tk > > > > Twitter: @koalasoft > > > > Facebook: william.koalasoft > > > > > > > > > > > > > > > > > -- > > > I.S.C. William López Jiménez > > > -- > > > User Linux # 379636 > > > MSN [email protected] > > > Jabber [email protected] > > > Web: www.koalasoftmx.tk > > > Twitter: @koalasoft > > > Facebook: william.koalasoft > > > > > > -- > > Roberto C. Sánchez > > http://people.connexer.com/~roberto > > http://www.connexer.com > > > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v1.4.10 (GNU/Linux) > > > > iQIcBAEBCAAGBQJPWtNVAAoJECzXeF7dp7IPIJYP/01Lc2ZfB/DdVAaSxyKCuawl > > kDcLAJ0ryojoA4iQdIltO8O4kpyAmAmsHY7Mj/GRYRqro0JSfQ+yGNIbIk2hWS+0 > > zNqlPhWKdLsgAbXT7C45k6j5w1KzzfuxkkJoNsrQhi2TFy1eclLshDyniilMbeKY > > H3g2H/1e8bQ6Rof6Qi6rj0Eu39jdbz7V2ReZLq8SoniTLIodhSx/5BXXTiezz8y0 > > 9Qc8edoT08qpeh82TnhQ3dcLNf+iFni0Z7D8cIJ8b3KEsAzO7shsNdlnuh9tV6du > > jZU+P4AbejEh/K3oAXLu+oErMqT9nioMJwsMAyQ/JBF5TaRcPzH5jivQM2l0LhKy > > IFZY6Si3tMF7OI3yVpFPe3hPC/xbbLt3+LXvkS1u7SoVIJXsShW0HgKLv/yR0xm8 > > d9DqcKzY8Cf0e31QHeQYTaRarZAK1mc9DYyIRPaoPESxj5mzh41MfR7NB9D9s/Pc > > FPwgJUYRdNELjgT8e8klhqFSuL1zv2/2iGaFrOHxLQ/5SvkT9jkRQc80zNgIIB7o > > Q7BE/PuKbAh5sa1V6i30eBhqFXb6cCmC7F9Xo9UZx7TxG45jyDMXsfa33TwEVn/M > > VLeT8L7sGsOLCRRiLKHLIQlhvMeCI8Aw+Xuz7OhR+lWW2WChqpCCt9HshKEQJpBC > > iTLb6D63nGkzPxq03vLn > > =/Z7o > > -----END PGP SIGNATURE----- > > > > > > > -- > I.S.C. William López Jiménez > -- > User Linux # 379636 > MSN [email protected] > Jabber [email protected] > Web: www.koalasoftmx.tk > Twitter: @koalasoft > Facebook: william.koalasoft -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
