Ray Olszewski wrote: <snip>
> >Having found it, we still have to fix it. I don't use the Dach default >firewall, but someone else can tell you the edit for it ... or you can try >scanning the list archives (the external-privvate-address problem comes up >regularly on the list). [Mike, is this problem common enough to deserve a >FAQ answer?] Or you can use a different drop-in firewall; I know >echowall.lrp, for example, handles private-range external addresses OK. > > The default Dachstein firewall scripts deny traffic on the external interface that comes from/goes to private-range ip-adresses. I think you can solve this in your case by commenting out line 208 in /etc/ipfilter.conf. Here is how to do it: - Go to the lrcfg menu (if you are not already there), choose 1, then 2. Now you are editing /etc/ipfilter.conf. - Go to line 208 (the line number is at the bottom right of your screen) - Place a # at the beginning of line 208. (just like line 207) - Save the changes, and exit from the editor - Exit from the menu so that you are at the commandline. - On the commandline type this: svi network ipfilter reload - Test the changed firewall. If everything works ok you can backup etc.lrp through the menu. Good luck! Ewald Wasscher _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
