Re: Help with SHOREWALL
From: Bit Twister (BitTwister_at_localhost.localdomain)
Date: 10/12/04
- Previous message: Jules: "Help with SHOREWALL"
- In reply to: Jules: "Help with SHOREWALL"
- Next in thread: Jules: "Re: Help with SHOREWALL"
- Reply: Jules: "Re: Help with SHOREWALL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 12 Oct 2004 04:11:50 GMT
On Tue, 12 Oct 2004 03:52:34 GMT, Jules wrote:
> My new installation of shorewall on a test machine is blocking
> everything (as far as I can tell). To test it, I made the following
> changes;
>
> - remarked out all rules in RULES file
> - put only one entry in the POLICY file - "all all ACCEPT info"
> - remarked out all actions in /usr/share/shorewall/actions.std
>
> I assume the above changes would make the system wide open, but it still
> doesn't work - I can't ping anything. My log (/var/log/messages) says;
>
> ...Shorewall:all2all:REJECT:IN= OUT=eth1 SRC=10.0.0.1 DST=10.0.0.99...
>
> where 10.0.0.1 is the firewall machine and 10.0.0.99 is another host.
> Eth1 is working (can ping other hosts ok when shorewall is stopped).
Why are you using 10.0.0.* It would be better to use 192.168.x.x
Guessing the rfc1918 list gotcha
- Previous message: Jules: "Help with SHOREWALL"
- In reply to: Jules: "Help with SHOREWALL"
- Next in thread: Jules: "Re: Help with SHOREWALL"
- Reply: Jules: "Re: Help with SHOREWALL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
