[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[suse-security] SuSEfirewall2 and FW_FORWARD_MASQ

Hi everyone,

I have a setup where I need to forward and masquerade traffic to an internal box from my SuSE 9.0. I use the following:


where XXX. is my external IP. But with this rule nothing works, I can only connect to the box when I add:


But that opens the whole internet for the internal box. Is there a way to prevent this in SuSEfirewall2 or do I need to add a custom rule? As far as I see it FW_MASQ_NETS can only deal with destination-ports, not with source ports, which is very regrettable.



Attachment: signature.asc
Description: OpenPGP digital signature