Hi,
I''ve installed shorewall (2.1.1) on a SuSE 8.1 System. There are 3
Network interfaces (net-eth0, loc-eth1, dmz-eth2). At the moment there
is one Windows File Server in the DMZ to which I want to connect to from
the internet as well as from the lan.
With the configuration below I can connect to the Windows Server without
problems:
DNAT net dmz:xxx.xxx.xxx.xxx:135 udp
DNAT net dmz:xxx.xxx.xxx.xxx:135 tcp
DNAT net dmz:xxx.xxx.xxx.xxx:137 udp
DNAT net dmz:xxx.xxx.xxx.xxx:138 udp
DNAT net dmz:xxx.xxx.xxx.xxx:139 udp
DNAT net dmz:xxx.xxx.xxx.xxx:139 tcp
DNAT net dmz:xxx.xxx.xxx.xxx:445 udp
DNAT net dmz:xxx.xxx.xxx.xxx:445 tcp
I will want to add more Windows File Servers to the dmz eventually, so I
changed the configuration the following way:
DNAT net dmz:xxx.xxx.xxx.xxx:135 udp 13500
DNAT net dmz:xxx.xxx.xxx.xxx:135 tcp 13500
DNAT net dmz:xxx.xxx.xxx.xxx:137 udp 13700
DNAT net dmz:xxx.xxx.xxx.xxx:138 udp 13800
DNAT net dmz:xxx.xxx.xxx.xxx:139 udp 13900
DNAT net dmz:xxx.xxx.xxx.xxx:139 tcp 13900
DNAT net dmz:xxx.xxx.xxx.xxx:445 udp 44500
DNAT net dmz:xxx.xxx.xxx.xxx:445 tcp 44500
My question is, how do I tell a Windows box to connect to a share in the
DMZ with the new port? I tried to connect like this:
\\xxx.xxx.xxx.xxx:44500\sharename, but windows doesn''t seem to accept
the new port number, 44500, and therefore won''t connect to the server.
Is it possible to use a DNS server installed on the Firewall to pass on
the requests to the correct servers?
Thanks for any help,
Markus