From: Christophe Z. <do...@zw...> - 2006-02-21 17:17:51
|
Tom Eastep wrote: > On Tuesday 21 February 2006 07:25, Christophe Zwecker wrote: > > >>ok I did, but still I can't connect to the server in the dmz zone. My >>client is in the dmzp zone which is going thru the same interface on the >>firewall, i just get a timeout. again my DNAT Rule looks as follows: >> >>DNAT dmzp:192.168.4.100 dmz:85.183.140.11 tcp >>21,22 - foobar.dyndns.org >> >>the DNAT Rule I use from my lan that works: >> >>DNAT lan dmz:85.183.140.11 tcp >>21,22 - foobar.dyndns.org >> >>any ideas what it could be ? >> > > > The (ugly) solution to FAQ 2 also clearly states that you need an entry > in /etc/shorewall/masq. Have you added that? > > -Tom yes: eth0.4:192.168.4.100 eth0.4 192.168.4.254 tcp 21,22 or I tried this too: eth0.4:192.168.4.100 eth0.4 85.183.140.9 tcp 21,22 -- Christophe Zwecker :Sysctl Koppel 96 20099 Hamburg phon: +49 40 41263790 fax: +49 40 41263799 mail: czw...@sy... |