Mailinglist Archive: opensuse-security (220 mails)

< Previous Next >
Re: [suse-security] pcAnywhere-port forwarding
  • From: Sebastian Krahmer <krahmer@xxxxxxx>
  • Date: Tue, 11 Nov 2003 12:05:42 +0100 (CET)
  • Message-id: <Pine.LNX.4.44.0311111203560.1329-100000@xxxxxxxxxxxxx>
On Tue, 11 Nov 2003, root wrote:

Hi,


> Hi Guru's
>
> A beginner's big problem:
> I'm using SuSE 8.2 in the firewall.
> eth0 192.168.23.80
> eth1 x.y.w.z
> I configured the susefirewall2, the client can ping the firewall.
> I need to enable to one outside client connect to my internal pc with
> pcAnywhere
> my pc: 192.168.23.201 win xp
> Outside Pc : 217.236.X.X
> I need two ports : 5631,5632 and i need forwarding it,from the firewall to my
> local maschine.
> I make a custom rule in : /etc/sysconfig/scripts/SuSEfirewall2-custom:
> iptables -A FORWARD -j ACCEPT -p tcp --dport 5631
> iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to
> 192.168.23.201:5631
Contains the script this line-break? You need a continuitation mark \
at the end of the line if so. Like

iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to\
192.168.23.201:5631

Did you test the iptables command on a shell by hand? For me they work.

Sebastian

>
> iptables -A FORWARD -j ACCEPT -p tcp --dport 5632
> iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 5631 -j DNAT --to
> 192.168.23.201:5632
>
>
> The boot error message:
> Try `iptables -h' or 'iptables --help' for more information.
>
> iptables v1.2.7a: unknown protocol `5631' specified
>
> Try `iptables -h' or 'iptables --help' for more information.
>
> iptables v1.2.7a: unknown protocol `5632' specified
>
> Try `iptables -h' or 'iptables --help' for more information.
>
> What is the solution?
> Thanks a lot of your help.
> If it work, i will pay for all of you a beer :)
> Sorry for my english, and my long message.
>
>

--
~
~ perl self.pl
~ $_='print"\$_=\47$_\47;eval"';eval
~ krahmer@xxxxxxx - SuSE Security Team
~



< Previous Next >
References