On 12/6/12 9:59 AM, "Dr. Harry Knitter" <ha...@knitter-edv-beratung.de>
wrote:
>Am Donnerstag, 6. Dezember 2012 schrieb Tom Eastep:
>> What is the policy for connections from the firewall back to the zone
>> with the TV (probably $FW -> loc)?
>>
>> -Tom
>
>the TV is attached to the nic pointing to a DSL router (192.168.178.1).
>The
>policy (firewall on my server) is DROP for the net the TV is in.
>A rule ACCEPT udp 1900 to the nic of the server is set.
>The server has 2 nics 1 attached to the net where the TV is in
>(192.168.178.0/24) and one attached to my internal net (10.255.80.0/24).
>The DLNA server listens on 192.168.178.3 and the TV has the IP
>192.168.178.25.
>I have tested the nic with 192.168.178.3 with tshark. The result can be
>seen
>in my previous mail: No requests for port udp 1900 from 192.168.178.24
Try adding these rules:
REDIRECT zone-of-the-tv:address-of-the-tv 1900
udp port-tv-is-sending-to
ACCEPT $FW
zone-of-the-tv:address-of-the-tv udp
-Tom
You do not need a parachute to skydive. You only need a parachute to
skydive twice.
------------------------------------------------------------------------------
LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial
Remotely access PCs and mobile devices and provide instant support
Improve your efficiency, and focus on delivering more value-add services
Discover what IT Professionals Know. Rescue delivers
http://p.sf.net/sfu/logmein_12329d2d
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
