http://bugzilla.novell.com/show_bug.cgi?id=551282
http://bugzilla.novell.com/show_bug.cgi?id=551282#c22
Johannes Meixner changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|REOPENED |NEEDINFO
Info Provider| |pagan13@estreet.com
--- Comment #22 from Johannes Meixner 2009-12-03 10:47:05 UTC ---
The setup for saned like 192.168.0.0/24
in /etc/sane.d/saned.conf is totally
separated from the firewall setup.
When you have 192.168.0.0/24 in /etc/sane.d/saned.conf
the saned accepts all 192.168.0.x network traffic
but the running firewall can still block it
on a lower level (i.e. directly in the kernel)
so that no network traffic arrives at the saned.
Therefore also the firewall setup must be made accordingly
so that the kernel sends network traffic to the saned.
No application (e.g. the saned) must change any firewall rule
in the kernel because for applications the firewall rules
are sacrosanct. Only the admin sets the firewall rules.
When your 192.168.0.x network is trusted,
set in the YaST firewall setup the particular
network interface (something like eth0 or eth1)
which belongs to the 192.168.0.x network
to be in the internal ("INT") zone of the firewall.
To do this run the YaST firewall setup
and select "Interfaces",
then select the network interface which belongs
to the 192.168.0.x network,
click the [Change...] button so that a
"Zone for Network Interface" popup appears,
therein select "Internal Zone" and click [OK]
which closes the "Zone for Network Interface" popup,
then click [Next] and [Finish].
When the network interface for the 192.168.0.x network
is set to be in the internal zone of the firewall,
the firewall permits access via this interface
which means it allows access for the 192.168.0.x network.
The result is that the firewall does no longer block
the network traffic for the 192.168.0.x network
so that in the end scanning via the 192.168.0.x network
would again work.
Please report if scanning via the 192.168.0.x network
again works after you set its network interface
to be in the internal zone of the firewall.
--
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.