![](https://seccdn.libravatar.org/avatar/97521604d5b309189e29d7ce0e20db74.jpg?s=120&d=mm&r=g)
Hi Local net on eth0, samba and nfs. Works fine Internet on eth1: nothing gets through the server is 192.168.0.1 and the clients 192.168.0.1, 192.168.0.2 etc Here are the settings. (if I remove the FW_DEV_EXT and leave it blank all the machines can get internet but I think that they are unprotacted) Could anyone help us? FW_DEV_EXT="eth1" FW_DEV_INT="" FW_DEV_DMZ="" FW_ROUTE="yes" FW_MASQUERADE="no" FW_MASQ_DEV="$FW_DEV_EXT" FW_MASQ_NETS="192.168.0.13 192.168.0.14" FW_PROTECT_FROM_INTERNAL="yes" FW_AUTOPROTECT_SERVICES="yes" FW_SERVICES_EXT_TCP="3128 53 21 139" FW_SERVICES_EXT_UDP="" FW_SERVICES_EXT_IP="" FW_SERVICES_DMZ_TCP="" FW_SERVICES_DMZ_UDP="" FW_SERVICES_DMZ_IP="" FW_SERVICES_INT_TCP="" FW_SERVICES_INT_UDP="" FW_SERVICES_INT_IP="" FW_TRUSTED_NETS="" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" FW_SERVICE_AUTODETECT="yes" FW_SERVICE_DNS="yes" FW_SERVICE_DHCLIENT="no" FW_SERVICE_DHCPD="no" FW_SERVICE_SQUID="yes" FW_SERVICE_SAMBA="yes" FW_FORWARD="" FW_FORWARD_MASQ="" FW_REDIRECT="" FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no" FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW" FW_KERNEL_SECURITY="no" FW_STOP_KEEP_ROUTING_STATE="no" FW_ALLOW_PING_FW="yes" FW_ALLOW_PING_DMZ="no" FW_ALLOW_PING_EXT="no" FW_ALLOW_FW_TRACEROUTE="yes" FW_ALLOW_FW_SOURCEQUENCH="yes" FW_ALLOW_FW_BROADCAST="no" FW_IGNORE_FW_BROADCAST="yes" FW_ALLOW_CLASS_ROUTING="no"
![](https://seccdn.libravatar.org/avatar/926aae47e9d1677af3799a66f39f330d.jpg?s=120&d=mm&r=g)
* steve;
Hi
FW_MASQUERADE="no" Turn this to yes
FW_SERVICES_EXT_TCP="3128 53 21 139"
I do not think that you want people to connect to your Squid (3128) and Samba (139). Do you offer FTP do other people or you want to use ftp. If you want to use ftp no need to declare here
FW_REDIRECT=""
This is where you need to define Squid redirection 192.168.0.13/32,0/0,80,3128 192.168.0.14/32,0/0,80,3128 -- Togan Muftuoglu
participants (2)
-
steve
-
Togan Muftuoglu