• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Shorewall configuration

ep0niks

OSNN Junior Addict
#1
Hi.

I have MDK 10 Official on a old box, sharing the net to my windows boxes.
I want to allow access of any computers to the box (all ip from 192.168.1.*)

I tried configuring two interfaces.. like my ppp0 (56k external modem blah) and the eth0 to make the bridge between other computers.

My problem : within Shorewall GUI, i can for example allow DNS server, SSH server and HTTPD on eth0, but i cannot (or i'm not able to) block these ports for ppp0

I know the shorewall.net have some nice docs, but i didn't find anything for my problem

You can look at my files at http://www.level-14.ca/linux/shorewall

:(
 

ep0niks

OSNN Junior Addict
#4
Oh well yeah.

I "simply" looked at RULES

At the end of the file :

#################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST LIMIT GROUP
ACCEPT net fw udp 53 -
ACCEPT net fw tcp 53,22,5900:5902,3128 -
ACCEPT loc fw udp 53 -
ACCEPT loc fw tcp 53,22,5900:5902,3128 -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE

changed for :

#################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST LIMIT GROUP
DROP net fw udp 53 -
DROP net fw tcp 53,22,5900:5902,3128 -
ACCEPT loc fw udp 53 -
ACCEPT loc fw tcp 53,22,5900:5902,3128 -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE

DROP action on net (external network) to fw (firewall) means "ignore" a particular request to a specific port, while ACCEOT on loc (local network) to fw (firewall) are allowed

I'm not an expert so.. if someone have security tips let me know :)
 

Members online

No members online now.

Latest posts

Latest profile posts

Hello, is there anybody in there? Just nod if you can hear me ...
Xie
What a long strange trip it's been. =)

Forum statistics

Threads
61,961
Messages
673,239
Members
89,014
Latest member
sanoravies