Richard Lustemberg
2003-Jun-27 07:23 UTC
[Shorewall-users] Shorewall terminates when adding DNAT rules
Hello: I have a problem setting up DNAT. This is the rule I use to forward port 3389 to a machine on an internal network: DNAT net loc:192.168.2.100 tcp 3389 - Shorewall runs on a Debian woody box , with an out of the box 2.18bf2 kernel and 2 NICs When I try to restart the firewall shorewall terminates with the following message + fatal_error ''Error: Invalid Target in rule "DNAT net loc:192.168.2.1 00 tcp 3389 -"'' + echo ''Error: Invalid Target in rule "DNAT net loc:192.168.2.100 tcp 3389 -"'' What is going wrong ? Thanks
Tom Eastep
2003-Jun-27 07:28 UTC
[Shorewall-users] Shorewall terminates when adding DNAT rules
On Thu, 2003-06-26 at 05:52, Richard Lustemberg wrote:> Hello: > > I have a problem setting up DNAT. This is the rule I use to forward port > 3389 to a machine on an internal network: > > DNAT net loc:192.168.2.100 tcp 3389 - > > Shorewall runs on a Debian woody box , with an out of the box 2.18bf2 kernel > and 2 NICs > > When I try to restart the firewall shorewall terminates with the following > message > > + fatal_error ''Error: Invalid Target in rule "DNAT net loc:192.168.2.1 > 00 tcp 3389 -"'' > + echo ''Error: Invalid Target in rule "DNAT net loc:192.168.2.100 tcp > 3389 -"'' > > What is going wrong ?The Debian Stable distribution uses an ancient version of Shorewall (1.2.12 IIRC) that doesn''t support the DNAT target (along with 75% of the other current Shorewall functions). The Documentation for that archaic code is at: http://shorewall.net/1.2/ Warning: The documentation for that version wasn''t too good either... -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net