I''v don all the work that was shown on the installation documentaion
but It still can''t send PASV comands and ares up the is their somthing
i''m missing from the Rules.
###
# Shorewall version 1.3 - Rules File
#
# /etc/shorewall/rules
REJECT:info loc net tcp 6667,137,138,139
REJECT:info loc net udp 137,138,139
#REDIRECT loc 80 tcp www - !192.168.1.2
#REDIRECT loc 21 tcp ftp - !192.168.1.2
#REDIRECT loc 22 tcp ssh - !192.168.1.2
#
ACCEPT loc $FW tcp ssh -
ACCEPT $FW net tcp ssh,ftp,ftp-data -
#
ACCEPT $FW net udp ntp -
#
ACCEPT $FW net tcp domain,www,snpp -
ACCEPT $FW net udp domain,www,snpp -
ACCEPT loc net tcp domain,ftp,ftp-data -
ACCEPT loc net udp domain -
#
DNAT net loc:192.168.1.2 tcp www,https,kerberos,464 -
DNAT net loc:192.168.1.2 udp www,https,kerberos -
DNAT net loc:192.168.1.2 tcp ftp,65500,65534,65501
-
DNAT net loc:192.168.1.2 tcp ftp-data -
DNAT net loc:192.168.1.2 tcp 8000 - 216.215.210.248
DNAT net loc:192.168.1.2 tcp 10000,ssh,auth -
DNAT net loc:192.168.1.2 udp ssh -
#
##############################################################################
# Shorewall 1.3 /etc/shorewall/modules
#
# This file loads the modules needed by the firewall.
loadmodule ip_tables
loadmodule iptable_filter
loadmodule ip_conntrack
loadmodule ip_conntrack_ftp ports=21,20
loadmodule ip_conntrack_irc
loadmodule iptable_nat
loadmodule ip_nat_ftp ports=21,20
loadmodule ip_nat_irc
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
