Re: Firewall, IPMASQ, Debian

To: "Eric Rousse" <ericrousse@sympatico.ca>
Cc: debian-user@lists.debian.org
Subject: Re: Firewall, IPMASQ, Debian
From: "C. Falconer" <criggie@ihug.co.nz>
Date: Mon, 25 Sep 2000 19:54:03 +1200
Message-id: <[🔎] 5.0.0.25.0.20000925194959.009ed500@pop.ihug.co.nz>
In-reply-to: <[🔎] 000b01c02688$37042480$0300a8c0@sympatico.ca>
References: <[🔎] Pine.LNX.4.21.0009241923300.31644-100000@tux.creighton.edu>

At 08:33 PM 9/24/00 -0400, you wrote:

 I'm unable to receive files from ICQ,
Unable to access my gateway(which is the firewall, and my webserver) from
outside of my LAN, using telnet or ssh.
But i'm able to send files over ICQ.


ICQ is a bit like that...  look at any of these sites for ip_masq_icq

    primary:    http://members.xoom.com/djsf/masq-icq/
    alternate:  http://www.chat.ru/~djsf/masq-icq/
                http://djsf.webjump.com/masq-icq/
                http://djsf.tripod.com/masq-icq/

If you're on 2.4.x then its not gonna work. It does work very well with2.2.17 here

As for the rest of it your firewalling script is probably what needschanging. Generally speaking, any internal machine should be able to dowhatever it wants (if you trust your users)

External boxes should only see your firewall.... you cannot ssh straight toan internal machine from outside, unless you either do something trickywith proxies, or configure incoming connections on ppp0 to be portforwardedto the internal IP. Clear as mud? Any other questions - ask.


--
Criggie

Reply to:

References:
- Re: Firewall, IPMASQ, Debian
  - From: Phil Brutsche <pbrutsch@tux.creighton.edu>
- Re: Firewall, IPMASQ, Debian
  - From: "Eric Rousse" <ericrousse@sympatico.ca>

Prev by Date: Re: How widely is Debian used for production?
Next by Date: Re: Procmail filtering / UNDELIVERABLE EMAIL
Previous by thread: Re: Firewall, IPMASQ, Debian
Next by thread: Re: Firewall, IPMASQ, Debian
Index(es):
- Date
- Thread