ME, I am using the linksys as my firewall (used to use LRP, but this is so easy, but weak too I suppose). I tried doing the DMZ host thing. But it didn't make a difference. I'm going into work right now, I'm going to test if the port forwarding is working
Jay ----- Original Message ----- From: "ME" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Sunday, October 07, 2001 5:15 PM Subject: Re: [vox-tech] More debian questions > On Sun, 7 Oct 2001, Jay Strauss wrote: > > I have my deb machine sitting behind a linksys firewall/dsl router. I'm > > forwarding port 22 to my deb machine, no other ports are forwarded. I can > > ping out from my deb box, but I don't think that the linksys responds to a > > ping from the outside. Do I need to open/forward back for netselect to work? > > If you are using your LinkSys to do the NAt / IP Masq thing, and ping from > the rest of the Internet to your Linksys (acting as a NAT Router) is not > responding, then enabling ping from your Linksys is what you are after, > not enabling something on your debian box behind the router. > > Check your web based access page for your LinkSys and see if there is an > option for changing the external network presence. (For my linksys > Wireless accesspoint+Router+Firewall rules (limited/weak) and etherswicth > (10/100) there was a radio button for enabling this presence in the > Advanced section called "Block Wan Requests: enable/disable" where the > default is enable. Once disable was chosen, I was able to ping the linksys > from the outside world (and this opens up some security concerns. For me, > it is not acting as a router/fw to the outside world, just on one of the > 4 private subnets behind my linux box firewall and in-house use. > > Another thing you may try to examine on your linksys is the option for > "DMZ Host" with your linux box. You may or may not have this feature in > your box. If so, it would probably be in the advanced section. > > If you have enabled DMMZ hosting to your debian box, then there would be a > set of FW rules (ipchains or tables) to limits ICMP traffic. > > -ME > > -----BEGIN GEEK CODE BLOCK----- > Version: 3.12 > GCS/CM$/IT$/LS$/S/O$ !d--(++) !s !a+++(-----) C++$(++++) U++++$(+$) P+$>+++ > L+++$(++) E W+++$(+) N+ o K w+$>++>+++ O-@ M+$ V-$>- !PS !PE Y+ !PGP > t@-(++) 5+@ X@ R- tv- b++ DI+++ D+ G--@ e+>++>++++ h(++)>+ r*>? z? > ------END GEEK CODE BLOCK------ > decode: http://www.ebb.org/ungeek/ about: http://www.geekcode.com/geek.html > Systems Department Operating Systems Analyst for the SSU Library _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
