Hi Guys,
Thi sis my first post, sorry for my english, I''m Italian.
I desperate try configure home server/router connected over ADSL with
dynamic IP.
I''ve registered to no-ip and in order to connect externaly to my home
server. My system is gentoo based.
I''ve just installed different pubblic servers with static IP and
shorewall and had no problems, but my own home server not :)
my ADSL router(modem) adress is 192.168.0.254 connected over eth0
(192.168.0.200). On ADSL router i haveNAT, DMZ active to point 192.168.0.200
on my gentoo system I have 3 interfaces:
eth0 (modem-zone) : 192.168.0.200
eth1 (local-lan) : 192.168.1.254
eth2 (wifi-lan) : 192.168.2.254
I''ve modified "three-interfaces" examples from
"Samples" distribution
directory in order to cancell DMZ and up WIFI instead.
This is my problem:
- I can''t access from WAN to my FW (tcpdump see packets)
All rest configurations work great.
My observations:
I like to work with net (is like small daily war :) ), And in the
future I think to change my standard configuration on ADSL modem (PPP)
to BRIDGE in order to make all conectivity configurations directly on my
lovely gentoo box.
What do U think abount, this will be simplest way to configure great
SHOREWALL software ?
Alberto.
On Saturday 28 May 2005 11:21, Alberto Starosta (ORG) wrote: Hi Alberto, please read the support guidelines at: http://www.shorewall.net/support.htm#Guidelines Focus on Step 3 and send us the output of "shorewall status" Alex> Hi Guys, > > Thi sis my first post, sorry for my english, I''m Italian. > > I desperate try configure home server/router connected over ADSL with > dynamic IP. > I''ve registered to no-ip and in order to connect externaly to my home > server. My system is gentoo based. > I''ve just installed different pubblic servers with static IP and > shorewall and had no problems, but my own home server not :) > > my ADSL router(modem) adress is 192.168.0.254 connected over eth0 > (192.168.0.200). On ADSL router i haveNAT, DMZ active to point > 192.168.0.200 > > on my gentoo system I have 3 interfaces: > eth0 (modem-zone) : 192.168.0.200 > eth1 (local-lan) : 192.168.1.254 > eth2 (wifi-lan) : 192.168.2.254 > > I''ve modified "three-interfaces" examples from "Samples" distribution > directory in order to cancell DMZ and up WIFI instead. > > This is my problem: > > - I can''t access from WAN to my FW (tcpdump see packets) > > All rest configurations work great. > My observations: > I like to work with net (is like small daily war :) ), And in the > future I think to change my standard configuration on ADSL modem (PPP) > to BRIDGE in order to make all conectivity configurations directly on my > lovely gentoo box. > > What do U think abount, this will be simplest way to configure great > SHOREWALL software ? > > Alberto. > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: > http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm
> I desperate try configure home server/router connected over ADSL with > dynamic IP. > I''ve registered to no-ip and in order to connect externaly to my home > server. My system is gentoo based. > I''ve just installed different pubblic servers with static IP and > shorewall and had no problems, but my own home server not :) > > my ADSL router(modem) adress is 192.168.0.254 connected over eth0 > (192.168.0.200). On ADSL router i haveNAT, DMZ active to point 192.168.0.200 > > on my gentoo system I have 3 interfaces: > eth0 (modem-zone) : 192.168.0.200 > eth1 (local-lan) : 192.168.1.254 > eth2 (wifi-lan) : 192.168.2.254No ppp0? FWIW, if you''re using PPPoE for example, your interface to the net is pppX, rather than the underlying ethY interface.> I''ve modified "three-interfaces" examples from "Samples" distribution > directory in order to cancell DMZ and up WIFI instead. > > This is my problem: > > - I can''t access from WAN to my FW (tcpdump see packets) > > All rest configurations work great. > My observations: > I like to work with net (is like small daily war :) ), And in the > future I think to change my standard configuration on ADSL modem (PPP)^^^ So you are using PPPoE?> to BRIDGE in order to make all conectivity configurations directly on my > lovely gentoo box. > > What do U think abount, this will be simplest way to configure great > SHOREWALL software ?FAQ 14, especially 14b might solve this. Just a guess though... karsten -- Davision - Atelier fuer Gestaltung / Internet / Multimedia UNIX / Linux Netzwerke und Schulungen Telefon 06151/273859 Fax 06151/273862
On Sat, 2005-05-28 at 13:36 +0200, Karsten Bräckelmann wrote:> FAQ 14, especially 14b might solve this. Just a guess though...Actually, I was referring to this thread: http://lists.shorewall.net/pipermail/shorewall-users/2005-March/017340.html See the list archives for all posts of this thread: http://lists.shorewall.net/pipermail/shorewall-users/2005-March/thread.html karsten -- Davision - Atelier fuer Gestaltung / Internet / Multimedia UNIX / Linux Netzwerke und Schulungen Telefon 06151/273859 Fax 06151/273862
Hi Guys, Thank U a lot for help, all work''s now perfectly This is my actual configurations: eth0: 192.168.0.200 (net) eth1: 192.168.1.254 (loc) eth2: 192.168.2.254 (wifi) on modem eth (gw) : 192.168.0.250 i''ve copied rfc1918 from share dir to /etc/shorewall dir & I''ve added this lines: 192.168.0.200 RETURN 192.168.0.250 RETURN , restarted , tryed by dialup connection & WORKS ! Thx U again. Alberto. NB: My plan is to transfer pppoe connection from modem (modem only bridge) to my gentoo box, what do U think ? I''ll have problems to reconfigure shorewall ? Karsten Bräckelmann ha scritto:>On Sat, 2005-05-28 at 13:36 +0200, Karsten Bräckelmann wrote: > > >>FAQ 14, especially 14b might solve this. Just a guess though... >> >> > >Actually, I was referring to this thread: > http://lists.shorewall.net/pipermail/shorewall-users/2005-March/017340.html > >See the list archives for all posts of this thread: > http://lists.shorewall.net/pipermail/shorewall-users/2005-March/thread.html > > karsten > > > > >------------------------------------------------------------------------ > >_______________________________________________ >Shorewall-users mailing list >Post: Shorewall-users@lists.shorewall.net >Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users >Support: http://www.shorewall.net/support.htm >FAQ: http://www.shorewall.net/FAQ.htm >