[Leaf-user] Re: Puzzled about Port Forwarding (Victor McAllisteer)
Message: 9 Date: Tue, 18 Dec 2001 22:13:36 -0800 From: Victor McAllisteer [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: [Leaf-user] Puzzled about Port Forwarding Rob Dover wrote: There seems to be so many different ways of doing port forwarding, I confess to being totally stumped. I am running an E2B firewall which has been working quite nicely for several months now. I am now adding a new machine behind the firewall and need to open a few ports. The only option I seem to have available is either ipmasqadm autofw or ipmasqadm portfw. I have tried using ipmasqadm portfw -a -P tcp -L InternetIP port -R ServerIP port which didn't give any errors yet when I do a ipmasqadm portfw -l I get... Could not open /proc/net/ip_masq/portfw Could not open /proc/net/ip_portfw Check if you have enabled portforwarding # Neither of the two portfw files exist nor do I seem to be able to create them. I have also tried ipfwadm -F -i accept -P udp -S InternetIP -D ServerIP 2074 which gives me the error ipfwadm: setsockopt failed: Invalid argument. I think I have port forwarding enabled; at least I have these two entries in my network.conf; IPFWDING_KERNEL=YES IPFWDING_FW=YES Can someone clue me into what I am doing wrong? Thanks It might be helpful if you give some more particulars about what you are trying to forward and where. There are values in /etc/network.conf that, if configured, open the firewall and forward to internal machines. I need to have either Telnet or SSH (preferably SSH) forwarded to a machine inside (IP 192.168.0.4) plus I need SSH to manage the FW from the inside from a different machine (192.168.0.1). I also need to open udp ports 2074 and 2075 as well as tcp ports 15425, 15426 and 15427 to the same machine for incoming connections. -Rob- ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Re: Leaf-user digest, Vol 1 #461 - 8 msgs
Message: 4 From: Charles Steinkuehler [EMAIL PROTECTED] To: Rob Dover [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [Leaf-user] Re: Puzzled about Port Forwarding (Victor McAllisteer) Date: Wed, 19 Dec 2001 14:50:47 -0600 You need to load the kernel modules that support port-forwarding: ip_masq_portfw ip_masq_autofw Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) They should both be loaded. Both files are in /lib/modules with coresponding entries in /etc/modules lsmod shows.. lsmod Module PagesUsed by ip_gre 6148 0 (unused) ip_masq_ipsec 7228 0 (unused) ip_masq_pptp4016 0 (unused) ip_masq_autofw 2380 0 (unused) ip_masq_ftp 2368 0 (unused) ip_masq_irc 1316 0 (unused) ip_masq_mfw 3100 0 (unused) ip_masq_portfw 2380 0 (unused) ip_masq_raudio 2380 0 (unused) ip_masq_user2380 0 (unused) ip_masq_vdolive 1084 0 (unused) ewrk3 12672 1 3c59x 18436 1 -Rob- ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Puzzled about Port Forwarding
There seems to be so many different ways of doing port forwarding, I confess to being totally stumped. I am running an E2B firewall which has been working quite nicely for several months now. I am now adding a new machine behind the firewall and need to open a few ports. The only option I seem to have available is either ipmasqadm autofw or ipmasqadm portfw. I have tried using ipmasqadm portfw -a -P tcp -L InternetIP port -R ServerIP port which didn't give any errors yet when I do a ipmasqadm portfw -l I get... Could not open /proc/net/ip_masq/portfw Could not open /proc/net/ip_portfw Check if you have enabled portforwarding # Neither of the two portfw files exist nor do I seem to be able to creat them. I have also tried ipfwadm -F -i accept -P udp -S InternetIP -D ServerIP 2074 which gives me the error ipfwadm: setsockopt failed: Invalid argument. I think I have port forwarding enabled; at least I have these two entries in my network.conf; IPFWDING_KERNEL=YES IPFWDING_FW=YES Can someone clue me into what I am doing wrong? Thanks -Rob- ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Dachstein + IP Aliasing and VPN support?
Does the new Dachstein release support IP Aliasing and will it pass PPTP by default or would I need to recompile the kernel? Thanks -Rob- ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Autofailover between Cable and DSL help
Greetings. I know the topic of load balancing has been brought up before and I have read the HOWTO on this topic but am still somewhat in the dark. I am not a programmer and have almost no knowledge of Perl but am fairly familiar with LRP and Linux in general. Here is what I am trying to accomplish...I have several sites configured with both DSL and Cable internet access. I would like to use one of these services to back up the other in the event of a failure. My application is a VPN connection between these sites and our central site. The actual VPN will be configured separate from the router likely using some form of appliance. My thinking is to use a LRP configured box with 3 nics and some sort of script to periodically check the health of the links and make a decision on which interface to route the traffic. I am sure others have already been down this path and would prefer to not have to reinvent the wheel :-) If anyone out there has done this and has any scripts and/or suggestions they would be willing to share, I would be grateful. Thanks -Rob- Rob Dover Sr. Technical Analyst Network Technologies mailto:[EMAIL PROTECTED] If you listen on a quiet night, you can hear the sound of an NT Server reboot. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
