|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [suse-security] FW_REDIRECT in SuSE Firewall
From: Günther J. Niederwimmer (gjn
gjn.priv.at)
Date: Wed Jul 06 2005 - 09:05:51 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello Ludwig,
Am Mittwoch, 6. Juli 2005 12:50 schrieb Ludwig Nussel:
> > >I am running SuSE 9.3, default Kernel on my firewall machine and want to
> > >redirect client FTP requests to Frox proxy, port 2121 on the firewall
> > >machine.
> > >
> > >In /etc/sysconfig/SuSEfirewall2, section 15 I set
> > >FW_REDIRECT="192.168.0.0/24,0/0,tcp,21,2121"
> > >
> > >But nothing gets redirected. What did I overlook?
> > You want to say
> > FW_REDIRECT="0/0,192.168.0.XXX,tcp,21,2121"
> >
> Redirect means redirecting to a port on the _local_ machine. The
> term you are most likely looking for is 'forwarding'. Have a look at
> FW_FORWARD_MASQ.
(?)
for frox, the sytax is in the Readme.SuSE
// To set up your packet filter, you will most likely use an iptables rule
like this one:
# redirect outbound ftp traffic from $int_dev transparently to proxy
$iptables -t nat -A PREROUTING -i $int_dev -p tcp --dport 21 -j REDIRECT
--to-port 2121
There is no need to recompile the kernel for this stuff. //
Have i setup this with
FW_FORWARD_MASQ ????.
Wofgang says all is on the same computer ?
--
MfG / Regards
Günther J. Niederwimmer
--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]