Hi All,
Apparently today is the day that I am too dumb to operate Shorewall.
I cannot DNAT standard ports. For example:
DNAT net loc:10.0.50.50:80 tcp 81
Works. I can point my (external) browser to my site:81 and the web
server on 10.0.50.50:80 comes up. This, however:
DNAT net loc:10.0.50.50 tcp 80
Does not work. The log shows the connection being allowed in, but
nothing comes back you (much like my earlier gateway problem which is
now rectified).
I have tried many permutations of the standard 80 <-> 80 forward to no
avail. I have tried:
Web/DNAT loc:10.0.50.50 tcp
and even
DNAT net loc:10.0.50.50:80 tcp 80
But no go.
There are no other rules with http or port 80 in them in the rules file
and my rule is the very first one.
It seems that the primary part of the DNAT is working, but the return is
broken somehow. Again, DNAT functions perfectly if I DNAT from external
port 81, 999, and 5000 just to name a few. It's just port 80 that
doesn't work.
Anyone have any ideas..?
I'm not sure what to attach for documentation.
Thanks!
J
begin:vcard
fn:Jon Watson
n:Watson;Jon
email;internet:[EMAIL PROTECTED]
tel;work:1.403.875.6048
x-mozilla-html:FALSE
url:http://www.jonwatson.ca
version:2.1
end:vcard
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
