Hi ..
I try this:
a) shorewall reset
b) try to connect to the site
but not enter the site : https://www.cardiologia.org.mx/ and other site
https
Send my shorewall dump for check .. thank for support
Firewall (squid/shorewall):
eth0: 130.3.100.9
IP Public:
eth1: 201.147.138.213
PC client LAN: 130.3.201.74
Is behind the firewall my PC client.
Greeting!!
My Shorewall version 4.4.25.3
2012/3/10 Roberto C. Sánchez <[email protected]>
> William,
>
> Having an external port scanner tell you that your port 80 is should
> have nothing to do with you not being able to connect to an IP outside
> your network on port 443. Please provide the output of 'shorewall dump'
> in order for us to help identify the problem.
>
> Regards,
>
> -Roberto
>
> On Sat, Mar 10, 2012 at 07:39:48AM -0600, I.S.C. William wrote:
> > For example, try entering this site:
> >
> > https://www.cardiologia.org.mx/
> >
> > and brand connection error only. and I can deduce that if the firewall
> since
> > it off and if you enter the site.
> >
> > I did a test on the site:
> > http://www.whatsmyip.org/port-scanner/server/
> >
> > and I mark that the port is closed least 80, and with the firewallup.
> >
> >
> >
> > 2012/3/9 Roberto C. Sánchez <[email protected]>
> >
> > > William,
> > >
> > > Can you provide more details as to how you are trying to access the
> > > https paages? For example, can you give an example of a URL that you
> > > are trying to access and what ever error or unexpected behavior you
> > > observe?
> > >
> > > Also, if you provide the output of 'shorewall dump' we could help with
> > > troubleshooting your issue.
> > >
> > > Regards,
> > >
> > > -Roberto
> > >
> > > On Fri, Mar 09, 2012 at 05:35:19PM -0600, I.S.C. William wrote:
> > > > I have only access checking on port 80, no other port is open, this
> will
> > > check
> > > > with pages that scan public IP.
> > > > All this happened since I upgrade to this version, with version3.4.8
> had
> > > no
> > > > problem.
> > > >
> > > > any ideas?
> > > >
> > > >
> > > >
> > > > 2012/3/9 I.S.C. William <[email protected]>
> > > >
> > > > > My shorewall 3.4.8 update to 4.4.25.3 using rpm, there were no
> errors
> > > in
> > > > > the update, but I have a detail in the rules, myserver is a proxy
> > > firewall
> > > > > (squid / Shorewall) if I can navigate through the pages I can even
> > > filter
> > > > > it well, my details areHTTPS pages, I can not open any, which with
> the
> > > > > previousversion if you could. I have the following:
> > > > >
> > > > > shorewall/interfaces
> > > > >
> > > > > net eth1 detect nosmurfs,blacklist
> > > > > loc eth0 detect
> > > > > routefilter,blacklist,tcpflags,nosmurfs,logmartians
> > > > >
> > > > > shorewall/zone
> > > > >
> > > > > fw firewall
> > > > > net ipv4
> > > > > loc ipv4
> > > > >
> > > > >
> > > > > shorewall/policy
> > > > >
> > > > > fw all ACCEPT
> > > > > net all DROP
> > > > > loc net ACCEPT
> > > > > loc fw REJECT info
> > > > > loc all REJECT info
> > > > >
> > > > >
> > > > > shorewall/rules
> > > > >
> > > > > REDIRECT loc 8080 tcp 80,81,82,3128,8000,8080
> > > > > ACCEPT loc net tcp 443
> > > > > ACCEPT net loc tcp 443
> > > > >
> > > > > I can answer simple rules well I filter the internet, the
> onlydetail is
> > > > > that I will not have the pages https (port 443) are well my rules?
> > > > >
> > > > > Greetings!!
> > > > >
> > > > >
> > > > >
> > > > > --
> > > > > I.S.C. William López Jiménez
> > > > > --
> > > > > User Linux # 379636
> > > > > MSN [email protected]
> > > > > Jabber [email protected]
> > > > > Web: www.koalasoftmx.tk
> > > > > Twitter: @koalasoft
> > > > > Facebook: william.koalasoft
> > > > >
> > > > >
> > > >
> > > >
> > > > --
> > > > I.S.C. William López Jiménez
> > > > --
> > > > User Linux # 379636
> > > > MSN [email protected]
> > > > Jabber [email protected]
> > > > Web: www.koalasoftmx.tk
> > > > Twitter: @koalasoft
> > > > Facebook: william.koalasoft
> > >
> > >
> > > --
> > > Roberto C. Sánchez
> > > http://people.connexer.com/~roberto
> > > http://www.connexer.com
> > >
> > > -----BEGIN PGP SIGNATURE-----
> > > Version: GnuPG v1.4.10 (GNU/Linux)
> > >
> > > iQIcBAEBCAAGBQJPWtNVAAoJECzXeF7dp7IPIJYP/01Lc2ZfB/DdVAaSxyKCuawl
> > > kDcLAJ0ryojoA4iQdIltO8O4kpyAmAmsHY7Mj/GRYRqro0JSfQ+yGNIbIk2hWS+0
> > > zNqlPhWKdLsgAbXT7C45k6j5w1KzzfuxkkJoNsrQhi2TFy1eclLshDyniilMbeKY
> > > H3g2H/1e8bQ6Rof6Qi6rj0Eu39jdbz7V2ReZLq8SoniTLIodhSx/5BXXTiezz8y0
> > > 9Qc8edoT08qpeh82TnhQ3dcLNf+iFni0Z7D8cIJ8b3KEsAzO7shsNdlnuh9tV6du
> > > jZU+P4AbejEh/K3oAXLu+oErMqT9nioMJwsMAyQ/JBF5TaRcPzH5jivQM2l0LhKy
> > > IFZY6Si3tMF7OI3yVpFPe3hPC/xbbLt3+LXvkS1u7SoVIJXsShW0HgKLv/yR0xm8
> > > d9DqcKzY8Cf0e31QHeQYTaRarZAK1mc9DYyIRPaoPESxj5mzh41MfR7NB9D9s/Pc
> > > FPwgJUYRdNELjgT8e8klhqFSuL1zv2/2iGaFrOHxLQ/5SvkT9jkRQc80zNgIIB7o
> > > Q7BE/PuKbAh5sa1V6i30eBhqFXb6cCmC7F9Xo9UZx7TxG45jyDMXsfa33TwEVn/M
> > > VLeT8L7sGsOLCRRiLKHLIQlhvMeCI8Aw+Xuz7OhR+lWW2WChqpCCt9HshKEQJpBC
> > > iTLb6D63nGkzPxq03vLn
> > > =/Z7o
> > > -----END PGP SIGNATURE-----
> > >
> > >
> >
> >
> > --
> > I.S.C. William López Jiménez
> > --
> > User Linux # 379636
> > MSN [email protected]
> > Jabber [email protected]
> > Web: www.koalasoftmx.tk
> > Twitter: @koalasoft
> > Facebook: william.koalasoft
>
>
> --
> Roberto C. Sánchez
> http://people.connexer.com/~roberto
> http://www.connexer.com
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (GNU/Linux)
>
> iQIcBAEBCAAGBQJPW3d9AAoJECzXeF7dp7IPhlwP/A7NXSOWg6MMSuQrzsDBYGlW
> xGnS5h8ATbfHQM5L7k8QOuxpgO4mpudQBob6AJ9X1kdxW4H7dOZ3Frog/oH9c9d2
> CDXcUFBTbWEiXOlTTLi2hGoihiJ9W65OXPovD6zV4JQYugFQvIpZetYX/Lh6NQDh
> GZsPcIgzmqn2wFiPJdU4KPKQkU+XEQJLpJSzkivlzZfR2Pe33AVigNmiu6SUYxRZ
> LLi3jGDHfRIINQUPu6Ue8M5xe+C17/GI08mKmVnXZa3T7mOBCLLCTi1ZmP3o5uC6
> v+Zd/KnHFCuZf8Lk6yo4mJDWzMilzgk9CEzmztZ9fJL7ZpBAIeP5y2uA+2Jj1qaP
> UfbZeTpmD8zDqeCb1srgr1iXjdTCJH6MBm7PmzPlEfm79YqIkG0OnFg6oovII524
> 00VqL4LWKKN9+w+kzNJXclAnI5ZSJju+WfmiTy7ceI2LHBLs0FDEulfBr2YoIvET
> 8FoQAv6X9ChrZPqly9/MytGQPHKilWyND3lq+VnKtdJz+Q/1H1RBZwMwUWu1Gjlo
> A7XB/wY6tYS5Uco1K6HNjkkACXZjH2AIAN14/1TMDiS+nASMno+aSAWT/kcsYqjA
> e3HQ1g3u8M9l0GtD9ZkborpLRVFZhePaU+FhrmaogOpqZA095rgHPQ5qpp8SlMzb
> uNM1dtVsfNuggRHgdhx9
> =XcwT
> -----END PGP SIGNATURE-----
>
>
--
I.S.C. William López Jiménez
--
User Linux # 379636
MSN [email protected]
Jabber [email protected]
Web: www.koalasoftmx.tk
Twitter: @koalasoft
Facebook: william.koalasoft
------------------------------------------------------------------------------
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
