Shorewall users - May 2010 - Telnet to Firewall's Virtual IP Failed

Hi,
I have this rule on rules file:

ACCEPT          net             $FW             tcp     1940    -              
1.2.3.5

Where 1.2.3.5 is virtual IP from my eth0. I try to telnet from other network
it''s fail.  But if I change 1.2.3.4 which is the root ip of eth0 it is
OK. What''s wrong here? Please help. Many thanks for the replies.



sangprabv
sangprabv@gmail.com



------------------------------------------------------------------------------

On 5/22/10 5:27 AM, sangprabv wrote:
> Hi, I have this rule on rules file:
> 
> ACCEPT     net        $FW        tcp     1940    -      1.2.3.5
> 
> Where 1.2.3.5 is virtual IP from my eth0. I try to telnet from other
> network it''s fail.  But if I change 1.2.3.4 which is the root ip
of
> eth0 it is OK. What''s wrong here? Please help. Many thanks for the
> replies.
What does ''netstat -tnap | fgrep :1940'' show? In other words,
what IP
address is the server listening on?

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------

What does shorewall log tells you once you do ''telnet 1.2.3.5
1940'' from
outside?

-----Ursprüngliche Nachricht-----
Von: sangprabv [mailto:sangprabv@gmail.com] 
Gesendet: Samstag, 22. Mai 2010 14:28
An: Shorewall Users
Betreff: [Shorewall-users] Telnet to Firewall''s Virtual IP Failed

Hi,
I have this rule on rules file:

ACCEPT          net             $FW             tcp     1940    -
1.2.3.5

Where 1.2.3.5 is virtual IP from my eth0. I try to telnet from other network
it''s fail.  But if I change 1.2.3.4 which is the root ip of eth0 it is
OK.
What''s wrong here? Please help. Many thanks for the replies.



sangprabv
sangprabv@gmail.com



----------------------------------------------------------------------------
--

_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users


------------------------------------------------------------------------------

Hi,
This issue has been resolved by  changing the application''s listen IP
to localhost rather than 1.2.3.5. Many thanks again for the fast reply.



sangprabv
sangprabv@gmail.com


On May 22, 2010, at 7:50 PM, Tom Eastep wrote:
> On 5/22/10 5:27 AM, sangprabv wrote:
>> Hi, I have this rule on rules file:
>> 
>> ACCEPT     net        $FW        tcp     1940    -      1.2.3.5
>> 
>> Where 1.2.3.5 is virtual IP from my eth0. I try to telnet from other
>> network it''s fail.  But if I change 1.2.3.4 which is the root
ip of
>> eth0 it is OK. What''s wrong here? Please help. Many thanks for
the
>> replies.
> 
> What does ''netstat -tnap | fgrep :1940'' show? In other
words, what IP
> address is the server listening on?
> 
> -Tom
> -- 
> Tom Eastep        \ When I die, I want to go like my Grandfather who
> Shoreline,         \ died peacefully in his sleep. Not screaming like
> Washington, USA     \ all of the passengers in his car
> http://shorewall.net \________________________________________________
> 
>
------------------------------------------------------------------------------
> 
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users

------------------------------------------------------------------------------