Hi I wasted a lot time trying to understand how the Susefirewall works but i still having one problem that i need to solve with some help of someone. I made the server responding ports 22 53 80 with the subnet having access to internet through masquerading. ok but now i need the port 22 go to other server in my subnet 192.168.0.2 i had tried to use FW_FORWARD_MASQ= "0/0,192.168.0.2,tcp,22" and "200.174.40.130/26,192.168.0.2,tcp,22" but in this way it doesnt work. What is wrong? if it works out fine i will try to put the mailserver into the subnet is it possible too? thanks for all Joni Hoppen
On Monday 31 January 2005 01:10 pm, Joni Hoppen wrote:
but now i need the port 22 go to other server in my subnet 192.168.0.2 i had tried to use FW_FORWARD_MASQ= "0/0,192.168.0.2,tcp,22" and "200.174.40.130/26,192.168.0.2,tcp,22" but in this way it doesnt work. What is wrong?
Not an answer to your question but I always found it easier and more straight forward just to ssh into the main server and then ssh again to the box on the LAN that I wanted. (and I also put ssh on a high port rather than 22)
Joni Hoppen wrote:
I made the server responding ports 22 53 80 with the subnet having access to internet through masquerading. ok
but now i need the port 22 go to other server in my subnet 192.168.0.2 i had tried to use FW_FORWARD_MASQ= "0/0,192.168.0.2,tcp,22" and "200.174.40.130/26,192.168.0.2,tcp,22" but in this way it doesnt work. What is wrong?
Try "0/0,192.168.0.2,tcp,22,22". I think the comments in /etc/sysconfig/SuSEfirewall2 are incorrect on argument #4 (and #5).
participants (3)
-
Bruce Marshall
-
Gary Gapinski
-
Joni Hoppen