> Now for the negative part. The developer of Shorewall really doesn't like
> doing what you are trying to do, but he does explain how to do it:
>
> http://shorewall.net/FAQ.htm#faq2
>
> He would prefer that you connect your webserver to a thirdd network interface
> on your firewall which would t
On Friday 15 Jul 2005 16:36, askar k wrote:
> Hello!
>
> I came back home (the previous email I was sending from work) and
> found that DNAT works!!! :)
>
> I wonder why it works now. But it should also work from LAN, am I right?
>
> And in my iptables -L | more I had everything you asked me.
>
> N
Hello!
I came back home (the previous email I was sending from work) and
found that DNAT works!!! :)
I wonder why it works now. But it should also work from LAN, am I right?
And in my iptables -L | more I had everything you asked me.
Now, I'll have to check from work place if it works or not...
On Friday 15 Jul 2005 13:40, askar k wrote:
> On 7/15/05, TreeBoy <[EMAIL PROTECTED]> wrote:
> > I am now getting really confused.
> >
> > You have three machines in the subnet 192.168.0.0/24
> >
> > They are:
> >
> > IPFQDN Description
> > 1 ??? Linux Fir
On 7/15/05, TreeBoy <[EMAIL PROTECTED]> wrote:
> I am now getting really confused.
>
> You have three machines in the subnet 192.168.0.0/24
>
> They are:
>
> IPFQDN Description
> 1 ??? Linux Firewall/Gateway
> 100 www.mydomain.com Linux webserver
I am now getting really confused.
You have three machines in the subnet 192.168.0.0/24
They are:
IPFQDN Description
1 ??? Linux Firewall/Gateway
100 www.mydomain.com Linux webserver running apache
? ??? XP box
You are tryin
On Friday 15 Jul 2005 11:10, askar k wrote:
> > Sorry to sound tedious, but what do you mean "doesn't show the page" ?
>
> I mean that it doesn't show the page which can be shown by
> http://192.168.0.100/
>
> > Does the browser say it can't find the machine ?
> >
> > Does the browser display an er
askar k wrote:
> In shorewall/rules I set up the line:
> DNATnet loc:192.168.0.100 tcp 80
> Is my setting correct? It doesn't work.
That sets it up so that any incoming connection from the zone defined as
net on tcp port 80 is forwarded out the zone defined as loc to
What do you mean "doesn't work" ?
This is precisely how I do it on all of the installs that I have running
around the country.
I would presume that the error is actually at your internal web server.
Cheers,
On Friday 15 Jul 2005 09:01, askar k wrote:
> Hello!
>
> In shorewall/rules I set up t
9 matches
Mail list logo
