> I'm trying to configure a backup/replacement of a Sonicwall firewall
> which sits between our company LAN and an ADSL router. We have been
> allocated a range of IP addresses
>
> 212.107.213.9 (the adsl modem)
> 212.107.213.10 (firewall WAN interface)
> 212.107.213.11 (incoming email comes
> Have made the modifications you suggested, and can now ping the
> additional external IPs from the wan interface.
>
> However, when I tested it live, I got no mail whilst the log showed
that
> port 25 traffic was being denied, despite having
> EXTERN_TCP_PORT0="0/0 smtp 212.107.213.11
>
> Sep 6
Hi,
I have a couple of questions re: my LEAF configuration...
1. when i'm assigning additional ip addresses to eth0, do I need to
include the subnet mask or will just the additional addresses do?
2. i've opened a port and setup a rule (with Charles' help - thanks
Charles) to direct mail to an i
OK - I'm still stuck. Could anyone help me out?
I've got a range of IP addresses
213.107.212.9 (adsl modem)
213.107.212.10 (firewall WAN interface)
213.107.212.11 (incoming email comes to this address)
213.107.212.12 (DMZ - not used yet)
Trying to let incoming mail through to the mail
On Wednesday 11 September 2002 11:42, Matt Walker wrote:
> OK - I'm still stuck. Could anyone help me out?
You haven't mentioned adding and loading the "ip_masq_portfw"
moduleyou'll need this from Charles' "small" kernel tree.
Everything else looks pretty good.
--
~Lynn Avants
aka Guitarl
Cc: [EMAIL PROTECTED]
Subject: Re: [leaf-user] Dachstein floppy
On Wednesday 11 September 2002 11:42, Matt Walker wrote:
> OK - I'm still stuck. Could anyone help me out?
You haven't mentioned adding and loading the "ip_masq_portfw"
moduleyou'll need this from Charles
On Thursday 12 September 2002 08:27, Matt Walker wrote:
> Thanks Lynn,
>
> Yes - ip_masq_portfw is loaded (I guess it's default setup - I didn't
> add it, but it shows up when I lsmod). Am I doing anything else
> silly?
Hmmm The portfw module shouldn't have been on a default Dachstein
floppy
Correct me if I'm wrong here, but doesn't he need an
entry in his hosts.allow too?
Sean
> On Thursday 12 September 2002 08:27, Matt Walker wrote:
> > Thanks Lynn,
> >
> > Yes - ip_masq_portfw is loaded (I guess it's default setup - I didn't
> > add it, but it shows up when I lsmod). Am I doing
On Thursday 12 September 2002 13:45, [EMAIL PROTECTED] wrote:
> Correct me if I'm wrong here, but doesn't he need an
> entry in his hosts.allow too?
Not to port forward, only to access the LEAF router itself.
--
~Lynn Avants
aka Guitarlynn
guitarlynn at users.sourceforge.net
http://leaf.source
> OK - I'm still stuck. Could anyone help me out?
>
> I've got a range of IP addresses
>
> 213.107.212.9 (adsl modem)
> 213.107.212.10 (firewall WAN interface)
> 213.107.212.11 (incoming email comes to this address)
> 213.107.212.12 (DMZ - not used yet)
>
> Trying to let incoming mail th
Yes, there are settings in /etc/network.conf for what you need to do.
To masquerade an IPSec connection through Dachstein (floppy):
- Load the ip_masq_ipsec module (edit /etc/modules)
- Open UDP port 500:
EXTERN_UDP_PORTS="0/0_500"
- Open *Protocol* 50:
EXTERN_PROTO0="50 0/0"
AFAIK, y
My two cents, that I believe I have read in LEAF or Charles docs is that
as in my case I restricted the UDP 500 and Protocol to just the IPs of the
other end of my VPN connection. Again attempting to limit the holes
going through the FW.
At 09:04 AM 1/22/02 -0600, Charles Steinkuehler wrote:
>Ye
> [I have seen that Charles has included a dnscache in rc2 but Jacques'
> lrp seems to integrate better with tinydns (?). From lurking, I
> understand that Dachstein-CD eventually used these ? Is it sensible to
> grab packages from the CD world and hammer them into an RC2 floppy?]
There a several
> I'm hoping to move from e2b to Dachstein RC2 tomorrow and wanted to ask:
>
> - Will Jacques Nilo's dnscache, tinydns, axfdns and the daemontl.lrp
> work ok with rc2 floppy ?
>
> [I have seen that Charles has included a dnscache in rc2 but Jacques'
> lrp seems to integrate better with tinydns (?)
> Hello,
> I'm hoping to move from e2b to Dachstein RC2 tomorrow and wanted to
ask:
>
> - Will Jacques Nilo's dnscache, tinydns, axfdns and the daemontl.lrp
> work ok with rc2 floppy ?
rc2 is not readily compatible with those packages. rc3 should and the
latest CD version is OK. Charles has not re
15 matches
Mail list logo
