thr3ads.net - Shorewall users - net connection blocked [Dec 2004]

If this information is useful, please help other people find it:
Share via:

varun_saa@vsnl.net

2004-Dec-29 03:37 UTC

net connection blocked

Hello,
     My server is on Mandrake 10.1 off.
eth0 is WAN with static IP connected 512 DSL
eth1 is LAN.

I have enabled shorewall and it has blocked 
access to the net on my server.


My default shorewall settings are :
 
Source zone	Destination zone	Policy	Syslog level	Traffic limit	


loc                net                  ACCEPT      None            None
 
net                Any                  DROP        info             None
  
Any                Any                  REJECT      info             None


The interface settings are :

Interface	Zone name	Broadcast address	Options	

eth0             net             Automatic               None
 
eth1             loc             Automatic               None


Thanks

Varun

Tom Eastep

2004-Dec-29 03:47 UTC

head link

Re: net connection blocked

On Wed, 2004-12-29 at 08:37 +0500, varun_saa@vsnl.net
wrote:> Hello,
>      My server is on Mandrake 10.1 off.
> eth0 is WAN with static IP connected 512 DSL
> eth1 is LAN.
> 
> I have enabled shorewall and it has blocked 
> access to the net on my server.
Mandrake users who activate "Network Connection Sharing" should read
http://shorewall.net/two-interface.htm. You need to add a fw->net ACCEPT
policy if you want internet access from your firewall system; this is
clearly described in the above article.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

varun_saa@vsnl.net

2004-Dec-30 05:01 UTC

head link

Re: net connection blocked

----- Original Message -----
From: Tom Eastep <teastep@shorewall.net>
Date: Wednesday, December 29, 2004 9:17 am
Subject: Re: [Shorewall-users] net connection blocked
> On Wed, 2004-12-29 at 08:37 +0500, varun_saa@vsnl.net wrote:
> > Hello,
> >      My server is on Mandrake 10.1 off.
> > eth0 is WAN with static IP connected 512 DSL
> > eth1 is LAN.
> > 
> > I have enabled shorewall and it has blocked 
> > access to the net on my server.
> 
> Mandrake users who activate "Network Connection Sharing" should
read
> http://shorewall.net/two-interface.htm. You need to add a fw->net 
> ACCEPTpolicy if you want internet access from your firewall system; 
> this is
> clearly described in the above article.
> 
> -Tom
> -- 
> Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
> Shoreline,     \ http://shorewall.net
> Washington USA  \ teastep@shorewall.net
> PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key
> 
>  Ok, I have added fw -> net ACCEPT policy in default rules
as first rule.

When I save and reboot my eth0 is shown as down
and I can''t browse on the server.


Where should one add the new rules ?

Thanks

Varun

Reasonably Related Threads

Search for more reasonably related threads

Shorewall users - Dec 2004 - net connection blocked

net connection blocked

Re: net connection blocked

Re: net connection blocked

Reasonably Related Threads