Here is what I have in my /etc/shorewall/rules the ones with the # are old ones.
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVECTION SOURCE DEST PROTO DEST SOURCE ORIGINAL # PORT PORT(S) DEST #ACCEPT net fw tcp 22,80 - #ACCEPT net fw udp 53 - #ACCEPT loc fw tcp 53,22,631,3128, - #ACCEPT loc fw udp 53, - #ACCEPT $FW net tcp 53,80 - #ACCEPT $FW net udp 53 - #ACCEPT loc $FW udp 137,139,445 - #ACCEPT loc $FW tcp 137,,139,,445,10000 - #ACCEPT loc $FW udp 1024,137 - ACCEPT loc fw tcp 22, 53, 631,3128, 10000 ACCEPT loc fw udp 53 ACCEPT fw net tcp 53, 80 ACCEPT fw net udp 53 ACCEPT loc fw udp 137:139,445 ACCEPT loc fw tcp 137,139,445 ACCEPT loc fw udp 1024: 137 ACCEPT fw loc udp 137:139,445 ACCEPT fw loc tcp 137,139,445 ACCEPT fw loc udp 1024: 137 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE -----Original Message----- From: Thomas Backlund [mailto:[EMAIL PROTECTED] Sent: Friday, November 14, 2003 12:38 PM To: [EMAIL PROTECTED] Subject: Re: [expert] shore wall From: "Lawson, Jim" <[EMAIL PROTECTED]> > The server has 2 eth ports eth1 and eth2 eth 1 is eth0 and eth 2 is eth 1. > eth1 = eth0 is inside and eth2 = eth1 is outside just checked. also > I did cut and pasted yours into the rules. > so add eth0 to /etc/shorewall/routestopped and remove the line that starts with PORT(S) DEST and issue a 'shorewall start' and it should work, as it does for me... and I have been using Shorewall since before MDK started to use it... let me know if it works... -- Regards Thomas
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
