Hi
all,
I've spent too many
hours trying to solve a problem I now hope some kind person can help me with.
I'm using the latest
Dachstein CD version, 3 network cards as follows
eth0=external (ip's
212.125.237.178, 180, 181,182)
eth1=internal (ip's
192.168.1.0/24)
eth2=DMZ (ip's
192.168.2.0/24)
I want to allow
a machine in the DMZ to connect to a specific machine in the internal net on a
specific port, ie.
machine 192.168.2.2
wants to connect to 192.168.1.250 on port 4711.
I have no problem
going from internal to external, or from internal to dmz (can connect to
web-server on dmz). All attempts to have
the machine in the
dmz connect to the internal one fails. Some have mentioned to me that this will
not be possible/allowed. True ?
At the moment,
DMZ_SWITCH=PRIVATE. I've tried with YES/PROXY (what's
the difference between these three ?). I've also tried
setting up rules for
accepting traffic between these to machines to no avail. Telnet from 192.168.2.2
to 192.168.1.250 4711 fails,
and nothing appears
in the log. Could it be a routing problem ? I've set default gateway on
192.168.2.2 to 192.168.2.254 which is the ip
of
eth2.
Please help if you
can.
Kjetil
N�ss
