On Tue, 11 Nov 2003, root wrote: Hi,

Hi Guru's

A beginner's big problem: I'm using SuSE 8.2 in the firewall. eth0 192.168.23.80 eth1 x.y.w.z I configured the susefirewall2, the client can ping the firewall. I need to enable to one outside client connect to my internal pc with pcAnywhere my pc: 192.168.23.201 win xp Outside Pc : 217.236.X.X I need two ports : 5631,5632 and i need forwarding it,from the firewall to my local maschine. I make a custom rule in : /etc/sysconfig/scripts/SuSEfirewall2-custom: iptables -A FORWARD -j ACCEPT -p tcp --dport 5631 iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to 192.168.23.201:5631 Contains the script this line-break? You need a continuitation mark \ at the end of the line if so. Like

iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to\ 192.168.23.201:5631 Did you test the iptables command on a shell by hand? For me they work. Sebastian

iptables -A FORWARD -j ACCEPT -p tcp --dport 5632 iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to 192.168.23.201:5632

The boot error message: Try `iptables -h' or 'iptables --help' for more information.

iptables v1.2.7a: unknown protocol `5631' specified

Try `iptables -h' or 'iptables --help' for more information.

iptables v1.2.7a: unknown protocol `5632' specified

Try `iptables -h' or 'iptables --help' for more information.

What is the solution? Thanks a lot of your help. If it work, i will pay for all of you a beer :) Sorry for my english, and my long message.

-- ~ ~ perl self.pl ~ $_='print"\$_=\47$_\47;eval"';eval ~ krahmer@suse.de - SuSE Security Team ~