Hope this helps.
-john smith
#SOURCE DEST POLICY LOG LIMIT:BURST # LEVEL loc net ACCEPT loc fw ACCEPT net all DROP info # # THE FOLLOWING POLICY MUST BE LAST # all all REJECT info #LAST LINE -- DO NOT REMOVE
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER
# PORT PORT(S) DEST LIMIT
ACCEPT net fw tcp http,https,ssh,smtp,pop3,imap -
ACCEPT net fw udp pop3,imap
ACCEPT fw net tcp http,https,ssh,smtp -
ACCEPT fw loc tcp 137,139,445 -
ACCEPT fw loc udp 137:139 -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
Fajar Priyanto wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Dear all,
Anyone using shorewall?
I have this strange case. In my notebook, I set the policy and rules like this:
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
net $FW DROP ULOG
$FW net ACCEPT ULOG
loc net ACCEPT ULOG
all all DROP ULOG
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL # PORT PORT(S) DEST ACCEPT:ULOG loc $FW tcp 110 - ACCEPT:ULOG loc $FW tcp 25 - ACCEPT:ULOG loc $FW tcp 22,21 - ACCEPT:ULOG $FW net tcp 5050 - ACCEPT:ULOG $FW all all - - DROP:ULOG net $FW all - - ACCEPT:ULOG net $FW tcp 80 - #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
And in my local server, very similar: #SOURCE DEST POLICY LOG LEVEL LIMIT:BURST fw net ACCEPT net fw DROP info #net all DROP info all all REJECT info #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL
# PORT PORT(S) DEST
ACCEPT net fw udp 53 -
ACCEPT net fw tcp 80,443,53,22,20,21,25,109,110,143,783,993,10000 -
ACCEPT fw net all -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
But the PROBLEM is:
I can't connect to my server using FTP, nor from the server to my notebook. In /var/log/messages of the server, it drops high port:
Mar 31 21:14:20 server2 kernel: Shorewall:net2fw:DROP:IN=eth0 OUT= MAC=00:09:6b:a5:b1:65:00:c0:9f:28:15:65:08:00 SRC=192.168.0.234 DST=192.168.0.236 LEN=60 TOS=0x08 PREC=0x00 TTL=64 ID=29064 DF PROTO=TCP SPT=20 DPT=32802 WINDOW=5840 RES=0x00 SYN URGP=0
Can anyone give me direction here? Why the setting doesn't work? How do I open this "high port"?
TIA
- -- Fajar Priyanto | Reg'd Linux User #327841 | http://linux.arinet.org
20:20:11 up 12:23, Mandrake Linux release 9.2 (FiveStar) for i586 public key: https://www.arinet.org/fajar-pub.key
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQFAasahkp5CsIXuxqURAmO3AJwM2KIYCXsa2aLmZVgFVpLkUGkr1gCeP6kc UWm0tg/SY/ivG2C4iZJUWpU= =Gw7Q -----END PGP SIGNATURE-----
------------------------------------------------------------------------
____________________________________________________
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
____________________________________________________
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
