well you could look into an simple to set up firewall like PMfirewall where by it will genrate the ipchains rules for you and then you can edit them ..to suit you liking or you could try and use this rule if you have not used it yet:
#HTTPD $IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 80 -j ACCEPT this i assume should be fine -----Original Message----- From: Diego Arimany [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 13, 2001 6:27 PM To: [EMAIL PROTECTED] Subject: RE: ISDN with Firewall - software info Thanks for the pointer, I guess the info is as follows: The software in use is ipchains on a Redhat 7 box. However, even after doing a flush to all my policies, I cannot open the http port (80 I believe). I could also be having some masq problems as well. So far no client can connect to the server if it's not by SSH. I tried three different ipchains templates, chainging the NICs and LAN addresses (perhaps there is where the problem lies, but substituting shouldn't break the template). To many possibilities! ----Original Message Follows---- From: "Damien Adams" <[EMAIL PROTECTED]> To: "Diego Arimany" <[EMAIL PROTECTED]> Subject: RE: ISDN with Firewall Date: Mon, 12 Nov 2001 16:11:23 -0500 Post what software you are using. Its the matter of simply setting up a rule to allow this traffic in, but different firewalls make you write it different. -----Original Message----- From: Diego Arimany [mailto:[EMAIL PROTECTED]] Sent: Saturday, November 10, 2001 11:32 AM To: [EMAIL PROTECTED] Subject: ISDN with Firewall Hello guys, I got a question for a stupid situation that I can't get out. How can I open ''http'' trafic and allow web brousing to my clients through a firewall [RH/]? I tried to set up a firewall in my room connecting with an ISDN modem. The server can connect to my ISP (but I don't have it's IP address). When I check the logs, I see that if I used lynx or ping an address the packets go out, but can't come in. The server is also rejecting any other connection made to it if it's not SSH. Anyway, I really need help because I bought this new system just to make it a firewall for me and my flatmate... so I really feel dumb for spending all that money and I can't seem to use the system. Please help. diego. ========================================= = Diego Arimany = = e-m@il:[EMAIL PROTECTED] = =According to Einstein, time is relative= = therefore I cannot be late = ========================================= _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
