thr3ads.net - Shorewall users - SV: SV: SV: [Shorewall-users] ping from local to net [Jan 2003]

If this information is useful, please help other people find it:
Share via:

Kenneth Grande, Driftsjef aspIT AS

2003-Jan-08 09:04 UTC

SV: SV: SV: [Shorewall-users] ping from local to net

What is the output of your logfile when you try to ping a public ip?

Besides, you should change your internal ip addresses to private
addresses (rfc 1918):

     10.0.0.0        -   10.255.255.255  (10/8 prefix)
     172.16.0.0      -   172.31.255.255  (172.16/12 prefix)
     192.168.0.0     -   192.168.255.255 (192.168/16 prefix)

best regards,

Kenneth.

-----Opprinnelig melding-----
Fra: Marta Jara [mailto:marta_jara@zenithmedia.es] 
Sendt: 8. januar 2003 17:58
Til: kenneth.grande@aspit.no
Emne: Re: SV: SV: [Shorewall-users] ping from local to net

sorry, but i don''t understand


Kenneth Grande, Driftsjef aspIT AS wrote:

What does it report?
?
-----Opprinnelig melding-----
Fra: Marta Jara [mailto:marta_jara@zenithmedia.es] 
Sendt: 8. januar 2003 17:53
Til: kenneth.grande@aspit.no
Emne: Re: SV: [Shorewall-users] ping from local to net
?


Kenneth Grande, Driftsjef aspIT AS wrote:

Are you able to ping from your firewall?
? 
yes

?
Are your internal ip''s private?
? 
no

?
Does every ting else work for your clients? (like web mail etc?)
? 
web and it''s work

?
Are you masquerading the clients behind your firewall?
? 
the masquerading I do in the firewall 

?
Does your logfile report anything when you try to ping from your local
network to a public ip? 
??
yes, but only from loc2net and nothing from net2loc

?
cat /var/log/messages
(cat /path_to_log_dir/messages)
?
Best Regards,
?
Kenneth.
?
-----Opprinnelig melding-----
Fra: shorewall-users-bounces@shorewall.net
[mailto:shorewall-users-bounces@shorewall.net] P? vegne av Marta Jara
Sendt: 8. januar 2003 17:29
Til: kenneth.grande@aspit.no
Kopi: shorewall-users@shorewall.net
Emne: Re: [Shorewall-users] ping from local to net
?
my rules files is:
?
? 
ACCEPT????????? loc???? fw????? tcp???? 23?? 
????
?
? 
ACCEPT????????? loc???? fw????? udp???? 23?? 
????
?
? 
ACCEPT????????? loc???? fw????? tcp???? 22?? 
????
?
? 
ACCEPT????????? loc???? fw????? udp???? 22?? 
????
?
? 
ACCEPT????????? fw????? net???? tcp???? 53?? 
????
?
? 
ACCEPT????????? fw????? net???? udp???? 53?? 
????
?
? 
ACCEPT????????? dmz???? loc???? tcp???? 53?? 
????
?
? 
ACCEPT????????? dmz?? ??loc???? udp???? 53?? 
????
?
? 
ACCEPT????????? fw????? dmz???? tcp???? 23?? 
????
?
? 
ACCEPT????????? fw????? dmz???? udp???? 23?? 
????
?
? 
ACCEPT????????? fw????? dmz???? tcp???? 22?? 
????
?
? 
ACCEPT????????? loc???? net???? icmp???????? 
????
?
thanks
?
Kenneth Grande, Driftsjef aspIT AS wrote:
?
? 
Try to add this in your rules file:
?
ACCEPT????????? loc?????? net?????????? icmp
?
?
Best Regards,
?
Kenneth.
?
-----Opprinnelig melding-----
Fra: shorewall-users-bounces@shorewall.net
[mailto:shorewall-users-bounces@shorewall.net] P? vegne av Marta Jara
Sendt: 8. januar 2003 17:00
Til: shorewall-users@shorewall.net
Emne: [Shorewall-users] ping from local to net
?
I try to do ping between my local network and Internet and i can''t do 
it, in my policy I have:
loc???????????? net???????????? ACCEPT????????? info? 
loc???????????? fw???????? ?????ACCEPT?????????????? 
loc???????????? dmz??????????? ACCEPT????????? info? 
fw????????????? loc???????????? ACCEPT??????????????? 
fw????????????? net???????????? ACCEPT????????? info? 
fw????????????? dmz???????????? ACCEPT????????? info? 
dmz?????? ??????net???????????? ACCEPT????????? info? 
dmz???????????? fw????????????? ACCEPT????????? info? 
net???????????? loc???????????? ACCEPT????????? info? 
all???????????? all???????????? REJECT????????? info? 
?
can I help me?
thanks
?
?
_______________________________________________
Shorewall-users mailing list
Shorewall-users@shorewall.net
http://mail.shorewall.net/mailman/listinfo/shorewall-users
?
_______________________________________________
Shorewall-users mailing list
Shorewall-users@shorewall.net
http://mail.shorewall.net/mailman/listinfo/shorewall-users
?
 
?
??? 
?
?
_______________________________________________
Shorewall-users mailing list
Shorewall-users@shorewall.net
http://mail.shorewall.net/mailman/listinfo/shorewall-users
?
_______________________________________________
Shorewall-users mailing list
Shorewall-users@shorewall.net
http://mail.shorewall.net/mailman/listinfo/shorewall-users
?
? 
?

Maybe Matching Threads

Search for more maybe matching threads

Shorewall users - Jan 2003 - SV: SV: SV: ping from local to net

SV: SV: SV: [Shorewall-users] ping from local to net

Maybe Matching Threads

Wisdom of the Ancients