thr3ads.net - Shorewall users - [Shorewall-users] two-interface issue...is it mdk? or something else [Jul 2003]

If this information is useful, please help other people find it:
Share via:

Robby Russell

2003-Jul-22 22:46 UTC

[Shorewall-users] two-interface issue...is it mdk? or something else

Hello,

I''ve searched google, read through archives, followed the steps on the
two-interface examples...and nothing is helping me resolve this issue

To start...this started with my mandrake 9.1 shorewall install. That had
the same problem. So I followed instructions that (Tom) had in an email
long ago regarding removing shorewall, downloading the latest version and
two-interface.tgz files...and installing and using the example files.

The firewall is working, local clients can get out, they can see the
firewall ports just fine (nmap returns anything open)...and external
clients only see the ports I have ACCEPT''d.

To start off:
Version 1.4.6 (just installed from tar.gz from site)

# ip addr show
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
2: eth0: <BROADCAST,MULTICAST,PROMISC,UP> mtu 1500 qdisc pfifo_fast qlen
100
    link/ether 00:60:97:d3:f9:d9 brd ff:ff:ff:ff:ff:ff
    inet 12.224.156.120/24 brd 12.224.156.255 scope global eth0
3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
    link/ether 00:a0:c9:98:98:25 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.1/24 brd 192.168.1.255 scope global eth1


ip route show
192.168.1.0/24 dev eth1  scope link
12.224.156.0/24 dev eth0  scope link
127.0.0.0/8 dev lo  scope link
default dev eth0  scope link

shorewall show log, outputs the following:
Jul 22 22:16:18 net2all:DROP:IN=eth0 OUT= SRC=66.93.77.251
DST=12.224.156.120 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=16825 DF PROTO=TCP
SPT=62630 DPT=690 WINDOW=5840 RES=0x00 SYN URGP=0
Jul 22 22:16:18 net2all:DROP:IN=eth0 OUT= SRC=66.93.77.251
DST=12.224.156.120 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=5697 DF PROTO=TCP
SPT=62631 DPT=2019 WINDOW=5840 RES=0x00 SYN URGP=0

...

I am trying to route external port 220 to internal ip 192.168.1.5 (like in
the example) port 22.

A nmap of the machine from an external source shows the port, but shows
that it is closed.

Any suggestions?


--
Robby Russell
Portland Linux User Group
http://www.pdxlug.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: shorewall.out
Type: application/octet-stream
Size: 2920 bytes
Desc: not available
Url :
http://lists.shorewall.net/pipermail/shorewall-users/attachments/20030722/5ee82d84/shorewall.obj

Tom Eastep

2003-Jul-23 06:59 UTC

head link

[Shorewall-users] two-interface issue...is it mdk? or something else

On Tue, 2003-07-22 at 22:46, Robby Russell wrote:
> 
> I am trying to route external port 220 to internal ip 192.168.1.5 (like in
> the example) port 22.
> 
> A nmap of the machine from an external source shows the port, but shows
> that it is closed.
> 
> Any suggestions?
> 
Yes -- follow the troubleshooting procedure described in FAQs 1a and 1b.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net

Shorewall users - Jul 2003 - two-interface issue...is it mdk? or something else

[Shorewall-users] two-interface issue...is it mdk? or something else

[Shorewall-users] two-interface issue...is it mdk? or something else