I am sorry to ask such a simple question, but i need to be sure on this, since i dont want to lock myself out of my system My ISP are starting to block off _outgoing_ traffic on ports like 25 and so on.. Which means i have to work around a few things.. If i am running 1.3.12stable-3 on debian and include the following rule DNAT net $FW::25 tcp 2525 Would that direct traffic inbound on port 2525 to port 25 on the machine running shorewall, or is another syntax needed for 1.3?
On Sunday 14 March 2004 05:32 am, j2 wrote:> I am sorry to ask such a simple question, but i need to be sure on this, > since i dont want to lock myself out of my system > > My ISP are starting to block off _outgoing_ traffic on ports like 25 and so > on.. Which means i have to work around a few things.. > > If i am running 1.3.12stable-3 on debian and include the following rule > > DNAT net $FW::25 tcp 2525 > > Would that direct traffic inbound on port 2525 to port 25 on the machine > running shorewall, or is another syntax needed for 1.3?Jan, On 1.3, that rule or this one should work: REDIRECT net 25 tcp 2525 I''m a bit confused though since I thought that Debian stable used version 1.2.12. The above syntax would not work under 1.2 and I wouldn''t even try to advise you about the syntax for that ancient release. -Tom
> Jan, > > On 1.3, that rule or this one should work: > > REDIRECT net 25 tcp 2525Thanks.> > I''m a bit confused though since I thought that Debian stable used version > 1.2.12. The above syntax would not work under 1.2 and I wouldn''t even tryto> advise you about the syntax for that ancient release.There is a history behind it. Basically, the machine is part of a honey net. We set up a few systems on a given date, and have frozen justabout everything to see what happens with the various *NIX boxes which is part of the honey net. Hence the nonstandard version. The problem is that if i locked myself out of it now, i would not be able to reboot it until three weeks from now.. (dont ask).. So, i wanted to make sure. Thanks Tom.
For everyone who wants to install shorewall on a Suse 9 system. Get rid of the installed rpm packages for ppp and pptpd, I''ve spend several hours trying to get vpn running. After I deleted the rpm''s, compiled the source and installed it, it worked. Bye Marcus