-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --- Sreekanth S Rameshaiah <sree@mahiti.org> wrote:> Hi all, > Greetings ! > I have shorewall 1.4.7 installed. Everything''s fine execpt irc access > from local to net. > > in my rule file I have added a rule to allow > loc net tcp 6667 6667- From the looks of it your trying to specify a source port of tcp 6667 as well as a destination port of tcp 6667. The source port is randomly generated by your client. The only thing you need to worry about is the Destination port of tcp 6667. Remove the source port so your line looks like this. ACCEPT loc net tcp 6667 instead of; ACCEPT loc net tcp 6667 6667 I use irc.freenode.net and it works just fine using Shorewall 1.4.7c. HTH''s, Joshua Banks -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFAGgmmp9X7q/XgeyYRAqMrAJ94+3t6fnIs8GzKzFxDTzzFtZtIQQCeMG8O QkqseLD01XfoVTgXkC8BxGM=JQIL -----END PGP SIGNATURE-----
Hi all, Greetings ! I have shorewall 1.4.7 installed. Everything''s fine execpt irc access from local to net. in my rule file I have added a rule to allow loc net tcp 6667 6667 But i cannot connect to irc servers. The error is: Disconnected (). --- Looking up irc.freenode.net.. --- Connecting to irc.freenode.net (212.204.214.114) port 6667.. --- Connection failed. Error: Connection refused Cycling to next server in FreeNode... --- Disconnected (). --- Looking up irc.au.freenode.net.. --- Connecting to irc.au.freenode.net (210.8.120.224) port 6667.. --- Connection failed. Error: Connection refused How do I debug this further? Whats the best way to resolve this problem. Regards, - sree
On Friday 30 January 2004 03:42 am, Sreekanth S Rameshaiah wrote:> Hi all, > Greetings ! > I have shorewall 1.4.7 installed. Everything''s fine execpt irc access > from local to net. > > in my rule file I have added a rule to allow > loc net tcp 6667 6667 > > But i cannot connect to irc servers. > The error is: > Disconnected (). > --- Looking up irc.freenode.net.. > --- Connecting to irc.freenode.net (212.204.214.114) port 6667.. > --- Connection failed. Error: Connection refused > Cycling to next server in FreeNode... > --- Disconnected (). > --- Looking up irc.au.freenode.net.. > --- Connecting to irc.au.freenode.net (210.8.120.224) port 6667.. > --- Connection failed. Error: Connection refused > > How do I debug this further? > Whats the best way to resolve this problem.As I recall, IRC also requires a WORKING authd. There are a number of versions of authd that are able to forward auth requests to clients behind the firewall; you need to accept tcp 113 from the net to the fw and from the fw to the local network in order to run these daemons. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net