SuSE 9.0 firewall woes
David Kramer
david at thekramers.net
Sun Jun 20 23:38:01 EDT 2004
So I have this laptop now. Im marching around the house doing things
wirelessly. Cool. One problem I'm having is that if I try to get to my
web server via the external IP address, the packets are blocked by my
firewall. I need to do this, though, because I need to test out
websites running with different domain names on my box.
Here is the log entry for the denial:
Jun 20 23:15:14 uni kernel: SuSE-FW-ACCESS_DENIED_INT IN=eth1 OUT=
MAC=00:02:e3:18:4f:de:00:0e:35:1c:50:b6:08:00 SRC=192.168.1.4
DST=66.92.68.235 LEN=48 TOS=0x08 PREC=0x00 TTL=128 ID=55592 DF PROTO=TCP
SPT=1695 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
2 theories:
1) The SRC is an internal address. Why isn't it my external address?
Don't I masquerate myself to myself? Or is this not coming through my
external network at all (eth0=external, eth1=internal)? If not, how can
I get packets destined for my external IP address (66.92.68.235) to go
through?
2) Possibly packets FROM an internal IP address are not allowed to go TO
my external IP address, or some such nonsense.
Now on my trusty Red Hat 7.3 server that I understood nearly completely
because only standard config files were involved, I probably could have
figured this out on my own. But SuSE uses 12 config files all in
different directories just to figure out what timezone it's in, and I
just can't figure this out.
Thanks.
More information about the Discuss
mailing list