Ok, thanks. I made the changes to the network.conf file, but I just tried using port 80 (www) to see if I could figure out the forwarding before trying other ports. So I allowed the www port, but I can't access my internal web server from the outside still. Are there any other changes I need to make besides the two edits in etc/network.conf?
Thanks, Jon -----Original Message----- From: Lee [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 30, 2002 3:55 PM To: [EMAIL PROTECTED] Subject: Re: [leaf-user] Port Forwarding The IP address you see in the example is the IP address of the external identd server that you want your box to be able to talk to, rather than your router's external IP address. So your IP address doesn't matter. If you don't know the IP address of the external server - or if you think it could change (a reasonable assumption I'd guess) - then you could instead use "0/0" for the external IP address. This is what is happening in the two entries that follow the 216.171.153.128/25 example. "0/0" means "any IP address". However, this openness is something of a security risk, so a securer compromise might be to limit external connections from identd servers to those servers that reside on the gaming service's subnet. To do this you would have to establish the network address and subnet mask of the subnet that hosts the external identd server and use that instead of 0/0. (This format expresses the subnet mask as a "/24"-style number instead of an 255.255.255.0-style subnet mask.) You can probably determine the subnet details by doing a whois lookup on the IP address or name of the identd server. Then use a subnet calculator to convert it into the IP_address/subnet_mask_number format. HTH ----- Original Message ----- From: "Jonathan Berglund" <[EMAIL PROTECTED]> To: "'Lee Kimber'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, May 30, 2002 3:21 PM Subject: RE: [leaf-user] Port Forwarding > I'm looking at the network.conf file now, specifically the "# IP > Filter Setup" section where it says "# TCP services open to outside > world" > > It gives the example: "#EXTERN_TCP_PORTS='216.171.153.128/25_ssh > 0/0_www 0/0_1023'" but I was wondering what I put because I have a > dynamic IP for my external network connection. Can you help me out? > > Thanks, > > Jon _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
