[leaf-user] Dachstein-CD eth3 / DMZ error

Fri, 09 Aug 2002 10:43:55 -0700 


I am trying to setup a DMZ with a few extra ips I have. And I can't figure
out where I went wrong. My interface configs look like this:

eth0_IPADDR=66.93.80.54
eth0_MASKLEN=24
eth0_BROADCAST=255.255.255.0
# Use this to set the default route if required - ONLY one to be set.
# routed or gated could be used to set this so only use if not running
these.
eth0_DEFAULT_GW=66.93.80.1
# Secondary IP addresses/networks on same wire - add them here
eth0_IP_EXTRA_ADDRS="66.93.80.148"
.............

eth1_IPADDR=192.168.65.254
eth1_MASKLEN=24
eth1_BROADCAST=192.168.65.255

eth2_IPADDR=192.168.2.254
eth2_MASKLEN=24
eth2_BROADCAST=192.168.2.255

(IPSec WAN interface)
eth3_IPADDR=10.72.104.97
eth3_MASKLEN=28
eth3_BROADCAST=10.72.104.111

.............................

INTERN_IF="eth1"                # Internal Interface
INTERN_NET="192.168.65.0/24 10.72.104.96/28"
INTERN_IP="192.168.65.254"      # IP number of Internal Interface
                                # (to allow forwarding to external IP)
MASQ_SWITCH=YES                 # Masquerade internal network to outside
                                # world - YES/NO


DMZ_SWITCH=PRIVATE
DMZ_IF=eth2
DMZ_NET=192.168.2.0/24

DMZ_SERVER0="tcp 66.93.80.148 www 192.168.2.1 www"
DMZ_SERVER1="tcp 66.93.80.148 ftp 192.168.2.1 ftp"

I also have this line in my ipfilter.conf to allow the eth3 net to get to
the eth1 net just after the INTERN_xxx_SERVER lines:
$IPCH -A forward -b -j ACCEPT -s 10.72.104.96/28 -d 192.168.65.0/24


Now here is the error I get when i run 'svi network reload'.  I  have
tracked it down to the DMZ_SERVERx list.  When I comment them out the error
list shrinks.

  IP filters: /sbin/ipchains: can only specify ports for icmp, tcp or udp
Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information.
/sbin/ipchains: invalid port/service `10.72.104.96/28' specified
Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information.
/sbin/ipchains: invalid port/service `10.72.104.96/28' specified
Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information.
/etc/init.d/network: [B/sbin/ipchains: not found
firewall [IP Forwarding: ENABLED]


And When I turn the DMZ=NO I have this error:

Starting Network: [IP Always Defrag: ENABLED]
   IP filters: /etc/init.d/network: [B/sbin/ipchains: not found


I've been staring at this for hours and can't figure out what is causing it.

Thanks In advance

Alec








-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html























					Reply via email to