If I do the portfw to another machine, it works. That's very strange. I went through all the settings again, and can't find the reason.
Before: Portfw http world.internet webserver.local.lan Now: Portfw http world.internet new_webserver.local.lan So, if I set up some apache reverse proxies from the new webserver to the old webserver until I have the new webserver ready, I should have a working configuration. But still, I'm curious to know why I can't portfw to the old webserver directly. Rgds Richard On Wed, 2011-06-15 at 21:27 +0200, Richard Ulrich wrote: > And here is some tcpdump output from the box where vuurmuur is running. > tcpdump host 138.188.101.29 or host 192.168.2.5 > > Rgds > Richard > > > Am Mittwoch, den 15.06.2011, 20:54 +0200 schrieb Richard Ulrich: > > Hi Victor, > > > > > Is it a SYN packet? Can you give the packet details (wireshark/tcpdump)? > > > > Look like.. some output of tcpdump is attached. > > > > > > > It looks like 192.168.1.10 is the ipaddress of your "internet" > > > interface, suggesting it's behind a NAT router itself? Did you also > > > configure the router to forward the traffic? > > > > > > On first glance I see nothing strange about the ruleset, could you > > share > > > the output of "iptables -vnL"? > > > > Yes. That always worked, with the old router. > > ADSL router ----> Intermediary Router -----> Webserver > > It's the intermediary router, that I'm replacint right now. > > > > Also, I don't know if that has a signifficance, but in the vuurmuur > > logview, these lines with PORTFW always have "flags: ****S*" at the > > end. > > > > Rgds > > Richard > > > > ------------------------------------------------------------------------------ > EditLive Enterprise is the world's most technically advanced content > authoring tool. Experience the power of Track Changes, Inline Image > Editing and ensure content is compliant with Accessibility Checking. > http://p.sf.net/sfu/ephox-dev2dev > _______________________________________________ Vuurmuur-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/vuurmuur-users
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ EditLive Enterprise is the world's most technically advanced content authoring tool. Experience the power of Track Changes, Inline Image Editing and ensure content is compliant with Accessibility Checking. http://p.sf.net/sfu/ephox-dev2dev
_______________________________________________ Vuurmuur-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/vuurmuur-users
