Menu
▾
▴
Re: [Devil-Linux-discuss] no NAT from newbie
|
From: Fred F. <ffr...@lo...> - 2007-09-17 22:20:07
|
John, I tried to learn how to do those scripts by hand but it is too
specialized for however many times I will have to do it so I ended up
doing the FWBuilder way which is a cop out. You tell it what you want at
a higher abstraction level and it write the code for you.
I am sure you have a problem other than ping but ping may not work
because of the firewall itself so you may get DL working and not realize
it if you just do ping.
Attach the results from ipconfig /all and route print from the XP
machine like someone else suggested. That should help rule that out.=20
Fred Frigerio
Locust USA
=20
This electronic message transmission contains information from Locust
USA which may be confidential or privileged. The information is
intended to be for the use of the individual or entity named above. If
you are not the intended recipient, be aware that any disclosure,
copying, distribution or use of the contents of this information is
prohibited. If you have received this electronic transmission in error,
please notify us by telephone (305-889-5410) or by reply via electronic
mail immediately.
-----Original Message-----
From: dev...@li...
[mailto:dev...@li...] On Behalf Of
John Boden
Sent: Monday, September 17, 2007 5:19 PM
To: dev...@li...
Subject: Re: [Devil-Linux-discuss] no NAT from newbie
STILL NOT CONNECTING
Hi Fred,
Probably, from my limited ability to read /etc/init.d/firewall.rules I
see
# stop some smurf attacks
echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
# Stop ICMP redirect
for interface in /proc/sys/net/ipv4/conf/*/accept_redirects; do
echo "0" > ${interface}
done
In addition to ping, I tried to simply open pages with Mozilla and
failed.
All I did was make sure my ethernet cards were supported and selected
the setup option configure as a 2 card firewall Do I need to edit
anything else?
Thanks,
Chip
On 9/17/07, Fred Frigerio <ffr...@lo... > wrote:
If I remember correctly the firwall script
(/etc/init.d/firewall.rules)=20
blocks ICMP (ping). I am rolling my own using fwbuilder since
neither of
the templates provided directly work for me. Fwbuilder is free
for
linux, for Windows I think you have to pay.
=09
=09
Fred Frigerio
Locust USA
=09
This electronic message transmission contains information from
Locust
USA which may be confidential or privileged. The information is
intended to be for the use of the individual or entity named
above. If=20
you are not the intended recipient, be aware that any
disclosure,
copying, distribution or use of the contents of this information
is
prohibited. If you have received this electronic transmission
in error,
please notify us by telephone (305-889-5410) or by reply via
electronic=20
mail immediately.
=09
-----Original Message-----
From: dev...@li...
[mailto: dev...@li...
<mailto:dev...@li...> ] On Behalf
Of
John Boden
Sent: Monday, September 17, 2007 1:50 PM
To: dev...@li...=20
Subject: Re: [Devil-Linux-discuss] no NAT from newbie
=09
Hi Bruce,
=09
Thanks for the advise.
=09
after removing the router,
with
XP <--> DL <--> cable modem
=09
from DL: ping yahoo.com <http://yahoo.com>
works
ping 216.109.112.135 (aka yahoo) works
=09
from XP: ping DL (well ping 192.168.1.254 ) works
ping outside addr ( 69.181.170.104) FAILS
ping yahoo
FAILS
ping 216.109.112.135 <http://216.109.112.135>
(aka yahoo) FAILS
=09
=09
>> I STILL NEED MORE HELP <<
=09
Thanks,
Chip
=09
=09
=09
=09
------------------------------------------------------------------------
-
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Devil-linux-discuss mailing list
Dev...@li...
https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss
<https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss>=20
=09
|
