Hello Ludwig,
Michael Hoeller wrote:
[...] this seems to work. But as soon I try to connect via ssh user@192.168.55.200 I get rejected. And the following can be found in /var/log/messages
Jul 9 21:34:22 omicron kernel: SFW2-IN-ILL-TARGET IN=ippp0 OUT= MAC= SRC=192.168.55.200 DST=192.168.55.100 LEN=6 0 TOS=0x00 PREC=0x00 TTL=64 ID=48935 DF PROTO=TCP SPT=1032 DPT=22 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405B404 02080A01E052360000000001030302)
ILL-TARGET means your interface is not assigned to any zone. You need FW_DEV_EXT=ippp0. SuSEfirewall2 will run automatically when the interface is brought up or down if you enable the init scripts and make sure FIREWALL=yes in /etc/sysconfig/network/*
I will be able to check the machine in some hours, but I am 99% sure that the ippp0 is defined as _internal_ interface, Isn't that correct? Since I dial in and provide IP addresses in the same subnet 192.168.55.100 and 192.168.55.200 where the .200 is the machine which dials in. I am not sure about the init scripts, think they are switched of for ippp0. Think the idea was that the ippp0 is an internal interface only used for the dial in where allways an IP address from the same subnet is used.. all the best Michael This e-mail (and/or attachments) is confidential and may be privileged. Use or disclosure of it by anyone other than a designated addressee is unauthorized. If you are not an intended recipient, please delete this e-mail from the computer on which you received it. We thank you for notifying us immediately.