On Sun, 18 Aug 2002, Abjin M H wrote: > Hi, > > I am trying to configure shorewall. I have three eth interfaces eth0 (externel IP), >eth1(192.168.7.0/24), > eth2(192.168.8.0/24):dhcp. I have my webserver and mail server running at >192.168.7.5. What I want is I want to forward > any request comming to eth0 ports 80 and 25 DNAT to 192.168.7.5, 80 and 25. So I >have these in my rules file > > DNAT net ser:192.168.7.5 tcp 80 80 >
I suppose that 'ser' is your server zone -- the above rule assumes that web browsers use port 80 as a source zone -- that's clearly ridiculuous (get rid of the second "80"). > ACCEPT net fw tcp 80 1024:65535 > ACCEPT ser net tcp 1024:65535 80 > Delete those two entries. If you still have problems, try looking at the Shorewall Setup Guide (http://www.shorewall.net/shorewall_setup_guide.htm). -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
