From: Charles S. <ch...@st...> - 2002-05-10 15:56:42
|
> ipchains input -p tcp -d 64.113.72.222 ftp -j ACCEPT needed to be higher in > the chain, so it works now. the thing that now baffles me is that i thought > network.conf was supposed to take care of adding the ipchains rule when you > added it to network.conf. it added it automatically when i port-forwarded > http and ssh. anyone know why i had to manually add it this time? tia. > > <network.conf> > INTERN_SERVERS=" > tcp_${EXTERN_IP}_www_192.168.1.11_www > tcp_${EXTERN_IP}_ssh_192.168.1.12_ssh > tcp_${EXTERN_IP}_ftp_192.168.1.12_ftp > tcp_${EXTERN_IP}_20_192.168.1.12_20 > " > </network.conf> INTERN_SERVERS only sets up port-forwarding. You are responsible for using one of the available mechanisms to allow inbound packets to the particular service, typically with EXTERN_TCP_PORTS or the EXTERN_TCP_PORTn indexed list. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) |