Mandrake Linux Archives: security-firewall@mandrivalinux.org
Mandrake Linux: security-firewall@mandrivalinux.org
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
- From: Mark Tiller
- Subject: RE: [Security Firewall] Problems setting up latest ISO
- Date: 27 Apr 2005 22:40:52 -0000
Florin, My apologies, I looked at the entry for DNAT and it wasn't clear, I later looked at the entry for Source and it explained it all :-( Sorry for wasting your time. Mark > -----Original Message----- > From: security-firewall-owner@mandrivalinux.org > [mailto:security-firewall-owner@mandrivalinux.org] On Behalf Of florin > Sent: 27 April 2005 22:30 > To: security-firewall@mandrivalinux.org > Subject: Re: [Security Firewall] Problems setting up latest ISO > > this is a basic question about shorewall and I would > recommend you to read the corresponding documentation section > at shorewall.net before > posting these kind of questions :o) > > The answer is yes ... "DNAT wan:IP_ext will only allow ftp > from that external IP" ... > > my 2cts, > > On 4/27/05, Mark Tiller <mtiller@ntlworld.com> wrote: > > Hi All, > > > > I've gotten the firewall setup and it was running, but I'm having a > > problem with one of the rules I've added. > > > > I have to allow access from a specific I.P. address on the > internet to > > a server on the LAN for FTP. > > > > Previously on MNF1 I simply specified > > > > ACCEPT WAN:xxx.xxx.xxx.xxx LAN:192.168.1.11 TCP FTP All > > > > And that worked fine, however when I do the same thing on > MNF 2 I get > > an error from Shorewall saying "Only DNAT and REDIRECT rules may > > specify destination mapping". Looking at the Shorewall > documentation > > on the 'net, I think I need to use DNAT instead of ACCEPT. > > > > My question is, if I have specified a source IP on the 'net > > (WAN:xxx.xxx.xxx.xxx) will setting DNAT only allow FTP from that > > source address, or will it allow it from any IP on the 'net? > > > > Regards > > > > Mark > > > > > > ____________________________________________________ > > Want to buy your Pack or Services from MandrakeSoft? > > Go to http://www.mandrakestore.com > > Join the Club : http://www.mandrakeclub.com > > ____________________________________________________ > > > > > > > > > -- > Florin > >
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
- Replies:
- References:
- Prev by Date: Re: [Security Firewall] mnf eol question
- Next by Date: Re: [Security Firewall] mnf eol question
- Previous by thread: Re: [Security Firewall] Problems setting up latest ISO
- Next by thread: Re: [Security Firewall] Problems setting up latest ISO
- Index(es):