[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[suse-security] susefirewall2

To: suse-security@xxxxxxxx
Subject: [suse-security] susefirewall2
From: Walter Pabon Guerra <walterpg@xxxxxxxxx>
Date: Tue, 24 Jan 2006 09:47:03 -0500
Delivered-to: mailing list suse-security@xxxxxxxx
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=r1xm604VGNGD+zzb5UZ+sYPBz6afzpsGzHYjBDWBOwzR5HrLB33CY8AtJDvXI3v2lVKxHyTN1GSrC4/oNbsE2UOCeV9IQ+Fx0uRBxjHdCHUjTQl+1iHssTEmtaD+cJEb4M7HNvHNjCKCpZogDXOBYMpV2cZpFxMeM36/uKH5IB4=
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
Reply-to: walterpg@xxxxxxxxxxx

hi, i have a problem with susefirewall2, i need close all ports and
open only 80 and ssh for lan internal, for external i need open 80,
but i can't, this are my lines:

FW_DEV_EXT="eth-id-00:11:25:65:19:a8"
FW_DEV_INT="eth-id-00:11:95:e1:d0:a2"
#
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_NETS="192.168.0.0/24"
FW_FORWARD="172.19.1.101/16,192.168.0.1,tcp,80"
FW_MASQ_DEV="$FW_DEV_EXT"
FW_SERVICES_DNS="yes"
#
FW_SERVICES_INT_TCP="www"
FW_TRUSTED_NETS="192.168.0.0/24"
FW_SERVICES_EXT_TCP="www ssh"
#
FW_PROTECT_FROM_INT="yes"
FW_PROTECT_FROM_EXT="no"
FW_AUTOPROTECT_SERVICES="yes"
FW_ALLOW_PING_FW="no"
FW_ALLOW_PING_EXT="no"
#
FW_FORWARD_MASQ="172.19.1.101/16,192.168.0.1,tcp,80"
FW_ALLOW_FW_BROADCAST_EXT="yes"
FW_ALLOW_FW_BROADCAST_INT="yes"
FW_IGNORE_FW_BROADCAST_EXT="yes"
FW_IGNORE_FW_BROADCAST_INT="no"
FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="yes"
FW_LOG_ACCEPT_ALL="no"
FW_IPSEC_TRUST="no"


i waiting your help, thanks...!!!

--
Atte.

<<_waltico_>>

Walter Pabon Guerra

"Don't worry, Be Linux..."

http://www.utpinux.org
http://waltico.utpinux.org

--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] Does Rich Text hold the same risks as html ?
  - From: jfweber
- Re: [suse-security] susefirewall2
  - From: Christian Boltz
- Re: [suse-security] susefirewall2
  - From: Peter Wiersig

Prev by Date: [suse-security] Open Source AppArmor
Next by Date: Re: [suse-security] Does Rich Text hold the same risks as html ?
Previous by thread: [suse-security] Open Source AppArmor
Next by thread: Re: [suse-security] Does Rich Text hold the same risks as html ?
Index(es):
- Date
- Thread