[Firewall] Next problem

Eli Wapniarski eli at orbsky.homelinux.org
Fri Oct 5 16:59:27 CEST 2012


On Friday 05 October 2012 09:34:32 Lonnie Abelbeck wrote:
> Eli,
> 
> If you want to forward UDP 9987 to your internal host 192.168.0.11 using the
> same port, you *only* need: --
> NAT_FORWARD_UDP="9987>192.168.0.11"
> --
> Note the matching double-quotes, shell script style.
> 
> By also having OPEN_UDP="9987" you are tying to do two different things with
> the same packet.
> 
> So, remove OPEN_UDP="9987" and make sure you have matching double-quotes.
> 

Thanks Lonnie

That did the trick. Does this apply to everythig I forwared or just to udp?

Eli

> Lonnie
> 
> On Oct 5, 2012, at 7:52 AM, Eli Wapniarski wrote:
> > On Friday 05 October 2012 13:35:13 Eli Wapniarski wrote:
> >> I was premature about the "everything" was working OK.
> >> 
> >> Communication with my ftp server is OK.
> >> 
> >> I need to forward udp port 9987 from the outside and I can't seem to get
> >> that to work properly :(
> >> 
> >> 
> >> Internally, the service works great. But from the outside I cannot get
> >> access.
> >> 
> >> Relevant configuration....
> >> 
> >> EXT_IF="eth1"
> >> INT_IF="eth2"
> >> NAT=1
> >> NAT_FORWARD_UDP="9987>192.168.0.11
> >> OPEN_TCP="9987"
> > 
> > err correction
> > 
> > OPEN_UDP="9987"
> 
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.



More information about the Firewall mailing list