Mailinglist Archive: opensuse-security (375 mails)

< Previous Next >
Re: [suse-security] SuSEfirewall2-custom rules don't work
  • From: Jammer <Jammer@xxxxxx>
  • Date: Thu, 26 Sep 2002 14:39:27 +0200
  • Message-id: <655503479.20020926143927@xxxxxx>
Guten Tag Andreas Meier,

Am Donnerstag, 26. September 2002 um 14:16 schrieben Sie:

AM> Hi all -

AM> 1)
AM> I am running the Firewall2 on Suse 8.0 + Squid/2.4.STABLE6.
AM> I wan't to allow the following ports open en forward to 192.168.0.4,but the firewall don't
AM> allow.
AM> So, whats wrong ?


AM> cut from /etc/sysconfig/scripts/SuSEfirewall2-custom
AM> iptables -A forblock -i eth1 -p tcp --dport 4661 -j ACCEPT
AM> iptables -A forblock -i eth1 -p tcp --dport 4662 -j ACCEPT
AM> iptables -A forblock -i eth1 -p udp --sport 4665 -j ACCEPT
AM> iptables -A PREROUTING -t nat -p tcp --dport 4661 -i eth1 -j DNAT --to 192.168.0.4
AM> iptables -A PREROUTING -t nat -p tcp --dport 4662 -i eth1 -j DNAT --to 192.168.0.4
AM> iptables -A PREROUTING -t nat -p udp --sport 4665 -i eth1 -j DNAT --to 192.168.0.4

AM> Any ideas anybody?

AM> 2)

AM> by the way....
AM> where can i find the rules for iptables ???


I had no Probelm forwarding the Edonkey Port to my internal maschine,
now i have a high-ID ;-)

I used the following things in /etc/rc.config.d/firewall2.rc.config:
14.)
FW_FORWARD_MASQ="0.0.0.0/0,192.168.0.2,tcp,4662 0.0.0.0/0,192.168.0.2,udp,4665"

so it should be 192.168.0.4 in your config:
FW_FORWARD_MASQ="0.0.0.0/0,192.168.0.4,tcp,4662 0.0.0.0/0,192.168.0.4,udp,4665"


Have fun!
Jan





--
"Wir können das Problem mit den Landminen nur Schritt für Schritt lösen" Helmut Kohl

Mit freundlichen Grüssen
Jammer mailto:Jammer@xxxxxx


< Previous Next >
References