Hello, Actually, I have two web servers and I want to have http/port 80 access to the router that Shorewall is on and the 2 web servers. I do not have a dmz, just eth0(wan), $fw & eth1(lan). Having said that, should I ACCEPT wan to ANY?
Thanks for your help. Have a great day, Donald S. Doyle President G.E.M. Computer Consulting, LLC 317.250.4448 www.gemcc.com CONFIDENTIALITY NOTICE The materials enclosed with this electronic transmission are private and confidential and are the properties of the sender. The information contained in the material is privileged and is intended only for the use of the individual(s) or entity (ies) named above. If you are not the intended recipient, be advised that any unauthorized disclosure, copying, distribution, or the taking of any action in reliance on the contents of this information is strictly prohibited. If you have received this electronic transmission in error, please notify us by telephone. -----Original Message----- From: Roberto C. Sánchez [mailto:robe...@connexer.com] Sent: Thursday, March 28, 2013 9:09 AM To: Shorewall Users Subject: Re: [Shorewall-users] Port 80 On Thu, Mar 28, 2013 at 03:20:29AM -0400, Donald S. Doyle wrote: > Hello, > > > > I currently have port 80 ACCEPT from net to $FW. I am trying to also > access other servers through $FW. I know part of this is virtual servers. > proxypass, etc., but I also think I do not have the port setup correctly. > The net interface is a public IP and the lan interface is private. I > poked around the FAQs, but could not find anything that addressed my issue > (at least I could not find it). > Hi Donald, Is the webserver running on the firewall box? If not, then you will need a rule like: ACCEPT/HTTP net dmz:1.2.3.4 (or loc instead of dmz depending on how you have named the zones and where the webserver is located) If that is not it, please provide the output of 'shorewall dump' so that we can have a look and provide more precise assistance. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com ------------------------------------------------------------------------------ Own the Future-Intel® Level Up Game Demo Contest 2013 Rise to greatness in Intel's independent game demo contest. Compete for recognition, cash, and the chance to get your game on Steam. $5K grand prize plus 10 genre and skill prizes. Submit your demo by 6/6/13. http://p.sf.net/sfu/intel_levelupd2d _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
