Menu
▾
▴
[Shorewall-users] Port forwarding Problems + another question
|
From: Doug S. <dou...@gm...> - 2005-07-29 07:05:06
|
Hi all - I'm having some problems with port forwarding. I have a mail server behind my firewall that I would like to redirect all incoming smtp traffic too. Config files follow at end of email. I've added what I though was the correct entry into the rules file for this action. When I try and telnet:25 in from an external host I simply get=20 Trying 203.213.121.78... And thats it. Any thoughts? I've contacted my ISP and checked that they are not blocking the port. I can access the server on port 25 quite happily from within my network. Can I provide other information here for you? My other question was, I've noticed that my broadcast traffic is being dropped by shorewall on both subnet (ADSL modem ->FW & FW->Internet) - will this have any impact on my network (2 linux servers + various flavours of windows clients)? Or should I enable this? Thanks, Doug ---------------------------------------- Config files Interfaces net eth1 detect dhcp,routefilter,tcpflags loc eth0 detect tcpflags Policy loc net ACCEPT #loc fw ACCEPT fw loc ACCEPT fw net ACCEPT net all DROP info all all REJECT info Rules ACCEPT fw net tcp 53 ACCEPT fw net udp 53 DNAT loc fw:192.168.1.2 tcp 80 - =20 203.213.121.78 # Mail server @ 10.0.0.4 DNAT net loc:10.0.0.4 tcp smtp ACCEPT net fw tcp 23,www,ftp ACCEPT loc fw tcp 22 ACCEPT loc fw tcp 23 ACCEPT loc fw icmp 8 ACCEPT net fw icmp 8 ACCEPT fw loc icmp ACCEPT fw net icmp AllowSMB loc fw AllowSMB fw loc --=20 Regards, Doug ----------------------------------------------------------- You live and learn. At any rate, you live. |