Re: [suse-security] Firewall on Cd
Hi Jörn, Thanks for your help, I found the config files and edit, all ok for that, but the firewall not work correctly. This is what i`m doing: Step 1/8: I chose eth1 - intranet device Step 2/8: I check Enable Ip forward Step 3/8: Blank Step 4/8: Blank Step 5/8: TCP Ports selected smtp, domain, http, https, 3128, 8481 UDP Ports selected domain, 1588, 6024, 6026, 6028, 6030 Step 6/8: TCP Ports selected smtp, domain, http, https Step 7/8: Blank It`s correct ??? Thanks ----- Original Message ----- From: "Jörn Ott" <white@ott-service.de> To: <lsolorzano@cidelsa.com.pe> Sent: Wednesday, December 04, 2002 9:59 AM Subject: Re: [suse-security] Firewall on Cd
Hi Lucio,
Hello friends, Some of you uses firewall On CD?
I installed it for a client of mine and it is acceptable.
[...]
What I must do is to allow that firewall lets pass the packages for ports UDP 1588, 6024 and 8481 TCP and forward to the 192,168,0,48 IP commit (IP of infogate), this me says the people to it who provide infogate.
If you are looking at the fas module SuSEfirewall, you can open ports at the 4th step of that config module. As the ports you are mentioning are not listed, you must edit some config files first (quotuing the help window which should be on your screen when you use fas): "Die Pakete, deren Zielport einem ausgewählten Port bei 'TCP-Ports' oder 'UDP-Ports' entspricht, dürfen direkt auf die Firewall. Wählen Sie die Ports aus, über die die Pakete direkt auf die Firewall gelangen. Sollen weitere Ports freigegeben werden, die nicht aufgelistet sind, dann müssen Sie die entsprechende Konfigurationsdatei editieren: TCP: /etc/fas/TCPServices.conf UDP: /etc/fas/UDPServices.conf -------------
HTH Jörn
------------------------------------------------------------ Jörn Ott Telefon: (0 22 24) 94 08 - 73 EDV Service & Beratung Telefax: (0 22 24) 94 08 -74 Lohfelder Str. 33 E-Mail: mailto:white@ott-service.de 53604 Bad Honnef WWW: http://www.ott-service.de/
participants (1)
-
Lucio Solorzano