On 5/17/2021 2:35 PM, tha...@letterboxes.org wrote: > Hi everybody, > > I'm working on setting up my first linux based Shorewall firewall. Finally > getting rid of the Netgear router/firewall. > > I'm having trouble getting to my internet-connected Modem's Web interface > from my LAN. > > I'm pretty sure that I'm not understanding routes the right way. > > My network looks like this > > PUBLIC INTERNET > | > | > | > | > ATT MODEM > | eth0: IP ADDRESS = 192.168.1.254 (Web User Interface) > | > | > | eth1: IP ADDRESS = 99.X.X.X > | IP ADDRESS = 192.168.1.25 > LINUX ROUTER > | eth0: IP ADDRESS = 172.30.8.1 > | > | > | > ETHERNET SWITCH > | > | > | > | eth0: IP ADDRESS = 172.30.8.104 > | IP ADDRESS = 192.168.1.104 > DESKTOP > > > ON the "LINUX ROUTER", I can > -- ping the "LINUX ROUTER" @ 192.168.1.25 > -- ping the "ATT MODEM" @ 192.168.1.254 > -- access the 'Web User Interface' on the "ATT MODEM" in a browser > -- access everything on the Public Internet > > ON the "DESKTOP", I can > -- access everything on the Public Internet > > ON the "DESKTOP", I can NOT > -- ping the "LINUX ROUTER" @ 192.168.1.25 > -- ping the "ATT MODEM" @ 192.168.1.254 > -- access the 'Web User Interface' on the "ATT MODEM" in a browser > > To get from the DESKTOP to the ATTMODEM I _think_ I need some route in the > /routes file. At least. But I don't understand what & where to set it. >
Do you have 'IP_FORWARDING' enabled (see shorewall.conf)? Do you allow that traffic from your desktop to your modem? In other words, is everything working if Shorewall is 'clear'ed. -- Matt Darfeuille <m...@shorewall.org> Community: https://sourceforge.net/p/shorewall/mailman/message/37107049/ SPC: https://sourceforge.net/p/shorewall/mailman/message/36596609/ Homepage: https://shorewall.org _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
