Hi Tom Thanks for replying - especially given your current state of internet connectivity.
Maybe I'm misunderstanding the DNAT thing. I thought it would be required to translate from the external nic to the internal but even as I write this I can see how little sense that makes. I guess what I need to to simply allow TCP 21 connections from both the net and loc zones. Can't believe that I can't figure it out but I inherited these boxes and we all probably know it's impossible to get up to speed fast enough. J Sent from the road... +1.403.770.2837 -----Original Message----- From: Tom Eastep <[EMAIL PROTECTED]> Date: Saturday, Dec 16, 2006 3:45 pm Subject: Re: [Shorewall-users] FTP/DNAT Issue > >> > When I run shorewall clear, I can connect to the FTP server from the > outside so it seems to be a Shorewall configuration issue for sure. > >> A typical log entry when trying to connect looks like this: > > Dec 15 10:36:29 munged kernel: Shorewall:net2all:DROP:IN=eth0 OUT= > MAC ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
