Hmm, still doesn't seem to work. tcpdump shows the packet coming in from
the external interface and a tcp reply of some sort being generated, but
there is no traffic on the masqueraded interface to contact the server that
has the https server on it.
I've done a complete "SuSEfirewall2 stop && SuSEfirewall2 start" to make
sure there is no cruft.
Thanks for the try, any other ideas? :-)
My latest config:
START_FW2="yes"
FW_DEV_EXT="eth0"
FW_DEV_DMZ="eth1"
FW_DEV_INT="eth2"
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_NETS="192.168.0.0/24"
FW_SERVICES_EXT_TCP="22 25 53 443"
FW_SERVICES_EXT_UDP="53"
FW_SERVICES_DMZ_TCP="22 53"
FW_SERVICES_DMZ_UDP="53 514"
FW_SERVICES_INT_TCP="22 53 443"
FW_SERVICES_INT_UDP="53"
FW_SERVICE_DNS="yes"
FW_FORWARD_MASQ="0/0,192.168.0.2,tcp,443"
FW_ALLOW_PING_DMZ="yes"
Brian
----- Original Message -----
From: "Robert Klein"
Hello,
I'm having a problem forwarding port 443 to a box on my masquerade network. Everything else works fine, but I can't get this port forwarded. It's stumping me! I've worked on tons of firewalls, but this one is kicking my butt. Any ideas?
Add 443 as follows:
FW_SERVICES_EXT_TCP="22 25 53 443" FW_SERVICES_INT_TCP="22 53 443"
Robert