Re: [Shorewall-users] Ubuntu 17.10 Shorewall configuration?

Bernard Drozd Mon, 29 Jan 2018 10:11:15 -0800

Thanks, 
Please find information below:

ela@akacja:~$ sudo shorewall show
Shorewall 5.0.15.6 filter Table at akacja - Mon Jan 29 19:04:46 CET 2018


Counters reset Fri Jan 12 12:07:20 CET 2018

Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target     prot opt in     out     source               destination
34291 2298K ACCEPT     tcp  --  enp1s0 *       0.0.0.0/0            0.0.0.0/0   
         tcp dpt:100                     7
    2  1272 ACCEPT     udp  --  enp1s0 *       0.0.0.0/0            0.0.0.0/0   
         udp dpt:653                     4
6700K 2174M ACCEPT     tcp  --  enp1s0 *       0.0.0.0/0            0.0.0.0/0   
         tcp dpt:653                     5
208K   26M ACCEPT     tcp  --  enp1s0 *       0.0.0.0/0            0.0.0.0/0    
        tcp dpt:22
2251K 4181M ACCEPT     all  --  !enp1s0 *       0.0.0.0/0            0.0.0.0/0
5936K 2569M ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0   
         state RELAT                     ED,ESTABLISHED
17494  922K REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0   
         reject-with                      tcp-reset
39124 2811K REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
         reject-with                      icmp-port-unreachable

Chain FORWARD (policy ACCEPT 159 packets, 29160 bytes)
pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 517 packets, 125K bytes)
pkts bytes target     prot opt in     out     source               destination

ela@akacja:~$ sudo ip route show
default via 192.168.15.1 dev enp1s0 proto static
10.10.10.0/24 dev enp3s0f1 proto kernel scope link src 10.10.10.1
10.10.11.0/24 dev wlp4s0 proto kernel scope link src 10.10.11.1
192.168.15.0/24 dev enp1s0 proto kernel scope link src 192.168.15.145

From: c.mo...@web.de 
Sent: Monday, January 29, 2018 6:07 PM
To: shorewall-users@lists.sourceforge.net 
Subject: Re: [Shorewall-users] Ubuntu 17.10 Shorewall configuration?

Hello Bernard,

please read the reporting guidelines documented here 
http://shorewall.net/support.htm and provide the requested information for 
further analysis.

Regards
Thomas
  
Gesendet: Montag, 29. Januar 2018 um 17:36 Uhr
Von: "Bernard Drozd" <ber...@interia.pl>
An: shorewall-users@lists.sourceforge.net
Betreff: [Shorewall-users] Ubuntu 17.10 Shorewall configuration?
Hi,
I'm new in the firewalls.
I'm trying to set up Shorewall on the newest testing ubuntu server 17.10 in the 
most common configuration as firewall with two interfaces  (and WIFI).
http://shorewall.org/two-interface.htm
Unfortunately routing doesn't work...

I've tried  several different settings in my /etc/shorewall/snat configuration 
file unfortunately without success.
I receive 192.168.15.145 IP address from my ISP (which is seen from the 
Internet/outside as 46.xxx.xxx.xxx public address.
I use tree network interfaces defined as static in the /etc/netplan directory.
WAN: enp1s0
LAN: enp3s0f1
WLAN: wlp4s0
I use isc-dhcp-server  for LAN and WLAN and unbound  package for WAN.

Currently Shorewall service is disabled (and firewall/routing rules are defined 
in the /etc/network/if-up.d/firewall file) but I would like to try Shorewall.
Please help me to set up routing in the Sharewall.
Using SSH please log on my testing machine and correct Shorewall settings.
Here are the SSH login details:
http://drive.google.com/uc?export=view&id=1GMRU8w0EoZpfah9xiet4u-4Xhj5O4nJi
Thanks in advance,
Bernard
------------------------------------------------------------------------------ 
Check out the vibrant tech community on one of the world's most engaging tech 
sites, Slashdot.org! 
http://sdm.link/slashdot_______________________________________________ 
Shorewall-users mailing list Shorewall-users@lists.sourceforge.net 
https://lists.sourceforge.net/lists/listinfo/shorewall-users


--------------------------------------------------------------------------------
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot 


--------------------------------------------------------------------------------
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Re: [Shorewall-users] Ubuntu 17.10 Shorewall configuration?

Reply via email to