Mailinglist Archive: opensuse-security (78 mails)
| < Previous | Next > |
susefirewall2
- From: Walter Pabon Guerra <walterpg@xxxxxxxxx>
- Date: Tue, 24 Jan 2006 09:47:03 -0500
- Message-id: <22ef5ea70601240647n32dbe610g5330a2b24010df59@xxxxxxxxxxxxxx>
hi, i have a problem with susefirewall2, i need close all ports and
open only 80 and ssh for lan internal, for external i need open 80,
but i can't, this are my lines:
FW_DEV_EXT="eth-id-00:11:25:65:19:a8"
FW_DEV_INT="eth-id-00:11:95:e1:d0:a2"
#
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_NETS="192.168.0.0/24"
FW_FORWARD="172.19.1.101/16,192.168.0.1,tcp,80"
FW_MASQ_DEV="$FW_DEV_EXT"
FW_SERVICES_DNS="yes"
#
FW_SERVICES_INT_TCP="www"
FW_TRUSTED_NETS="192.168.0.0/24"
FW_SERVICES_EXT_TCP="www ssh"
#
FW_PROTECT_FROM_INT="yes"
FW_PROTECT_FROM_EXT="no"
FW_AUTOPROTECT_SERVICES="yes"
FW_ALLOW_PING_FW="no"
FW_ALLOW_PING_EXT="no"
#
FW_FORWARD_MASQ="172.19.1.101/16,192.168.0.1,tcp,80"
FW_ALLOW_FW_BROADCAST_EXT="yes"
FW_ALLOW_FW_BROADCAST_INT="yes"
FW_IGNORE_FW_BROADCAST_EXT="yes"
FW_IGNORE_FW_BROADCAST_INT="no"
FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="yes"
FW_LOG_ACCEPT_ALL="no"
FW_IPSEC_TRUST="no"
i waiting your help, thanks...!!!
--
Atte.
<<_waltico_>>
Walter Pabon Guerra
"Don't worry, Be Linux..."
http://www.utpinux.org
http://waltico.utpinux.org
open only 80 and ssh for lan internal, for external i need open 80,
but i can't, this are my lines:
FW_DEV_EXT="eth-id-00:11:25:65:19:a8"
FW_DEV_INT="eth-id-00:11:95:e1:d0:a2"
#
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_NETS="192.168.0.0/24"
FW_FORWARD="172.19.1.101/16,192.168.0.1,tcp,80"
FW_MASQ_DEV="$FW_DEV_EXT"
FW_SERVICES_DNS="yes"
#
FW_SERVICES_INT_TCP="www"
FW_TRUSTED_NETS="192.168.0.0/24"
FW_SERVICES_EXT_TCP="www ssh"
#
FW_PROTECT_FROM_INT="yes"
FW_PROTECT_FROM_EXT="no"
FW_AUTOPROTECT_SERVICES="yes"
FW_ALLOW_PING_FW="no"
FW_ALLOW_PING_EXT="no"
#
FW_FORWARD_MASQ="172.19.1.101/16,192.168.0.1,tcp,80"
FW_ALLOW_FW_BROADCAST_EXT="yes"
FW_ALLOW_FW_BROADCAST_INT="yes"
FW_IGNORE_FW_BROADCAST_EXT="yes"
FW_IGNORE_FW_BROADCAST_INT="no"
FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="yes"
FW_LOG_ACCEPT_ALL="no"
FW_IPSEC_TRUST="no"
i waiting your help, thanks...!!!
--
Atte.
<<_waltico_>>
Walter Pabon Guerra
"Don't worry, Be Linux..."
http://www.utpinux.org
http://waltico.utpinux.org
| < Previous | Next > |