Hi thanks for responding i set router forwarding the router is 192.168.9.1 5900/tcp 192.168.9.2 > this is the address of linux nic 1 linux nic 2 = 192.168.29.230 then below, i set FW_FORWARD_TCP="0.0.0.0/0,192.168.29.50,0" # Beware to use this! because i was told that 0.0.0.0/0 = any incoming address 192.168 etc add of win98 box to connect to 0=display number for vnc I then tried FW_FORWARD_TCP="219.nnn.nnn.nnn/24,192.168.29.50,0" # Beware to use this! where 212.nnn.nnn.nnn/24 is the address of the router as supplied by my IP. & I think the /24 relates to 255.255.255.0 Where am I going wrong please? also are ther other settings in the firewall which need to be set to yes??? thanks again terry # 13.) # Which services accessed from the internet should be allowed to the # dmz (or internal network - if it is not masqueraded)? # REQUIRES: FW_ROUTE # # With this option you may allow access to e.g. your mailserver. The # machines must have valid, non-private, IP addresses which were assigned to # you by your ISP. This opens a direct link to your network, so only use # this option for access to your dmz!!!! # # Choice: leave empty (good choice!) or use the following explained syntax # of forwarding rules, seperated each by a space. # A forwarding rule consists of 1) source IP/net, 2) destination IP (dmz/intern # and 3) destination port, seperated by a comma (","), e.g. # "4.0.0.0/8,1.1.1.1,22", # "4.4.4.4/12,20.20.20.20,22 12.12.12.12/12,20.20.20.20,22" # FW_FORWARD_TCP="" # Beware to use this! FW_FORWARD_UDP="" # Beware to use this! # ----- Original Message ----- From: "Raymond Leach" <raymondl@knowledgefactory.co.za> To: "SuSE Security" <suse-security@suse.com> Sent: Thursday, January 23, 2003 10:19 AM Subject: Re: [suse-security] firewall and port forwarding