Hi all, When defining rules, for example SSH do I need to specify the protocol name and number or do I just type "SSH/ACCEPT" Also, how do I define VNC access to the server with the rules? Aziz Hauari Swift Computers Tel: 0870 748 1233 Fax: 0870 748 1244 azizh@swiftcomputers.co.uk <mailto:azizh@swiftcomputers.co.uk> technical@swiftcomputers.co.uk <mailto:technical@swiftcomputers.co.uk> Swift Computers Ltd Registered number No.3211543 (England & Wales) Registered office Unit 3,12 Trading Estate Road,London.NW10 7LU VAT number : GB678037310 ***************************************************************************************Information in this message is confidential and may be legally privileged. It is intended solely for the person to whom it is addressed, and must not be used or copied by any other person. If you are not the intended recipient, please notify the sender, and delete the message from your system immediately. Opinions expressed are not necessarily those of the Swift Computers Limited, unless otherwise stated. This message is not guaranteed to be free from virus infections or data corruption, although care is taken in its preparation. It is not intended to serve as part of a legally binding contract. Reference made to any materials, goods or services carry the protection of copyright.*************************************************************************************** ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
On Thu, Feb 07, 2008 at 11:44:13AM -0000, Aziz Hauari wrote:> > When defining rules, for example SSH do I need to specify the protocol > name and number or do I just type "SSH/ACCEPT" >Please read the manual. It is all in there. If you have a recent shorewall on your system, ''man shorewall-rules'' should get you there.> > Also, how do I define VNC access to the server with the rules? >Any way you want. Just open the ports that you need. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Aziz Hauari wrote:> When defining rules, for example SSH do I need to specify the protocol > name and number or do I just type “SSH/ACCEPT” >You only need SSH/ACCEPT _or_ protocol/port -- not both.> > Also, how do I define VNC access to the server with the rules? >It might be helpful to look at http://www.shorewall.net/ports.htm#VNC. Note that the VNC macro operates on ports 5900:5909 (displays 0-9). So if you want to forward a single display, you will not want to use the VNC macro but rather use ''tcp <5900 + display number>''. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/