Hi Tall0n On 2001.08.27 15:59:52 +0100 Tall0n wrote:
I ended up adding a rule to the firewall along the lines of :
iptables -A input -i eth1 -p tcp -s 192.168.xxx.0/24 -d $public_ip
--dport
80 -j ACCEPT
Thanks for the response, I appreciate it, but I was wondering. Is there something in the firewall2.rc.config script that will achieve the above? I have multipe ports that need to be accepted on the external device from the internal network. 27015 and dynamic udp ports for counter-strike..hehe.
Creating multiple chains would work, but there must be a way to do it with the existing firewall scripts. ????
Glad to have been of some help so far - did my suggestion actually work? I can't offer advice on the SuSE scripts because I have always rolled my own firewalls. If it works, though, it isn't that much of a chore to knock up a boot script to add extra rules - a bit of copy and paste and adjust port numbers. If you trust your local users, you could always accept all traffic from localnet to public_ip by not specifing the protocol or the destination port in the rule I gave earlier. HTH Maf.
Thank you so much
Tall0n
-- GregWorld.com
-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Maf. King Standby Exhibition Services ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "It is easier to do a job right than to explain why you didn't." - Martin Van Buren ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~