[Shorewall-newbies] games via internet - problem

centrum radek at centrum10.us
Sat Mar 6 07:12:31 PST 2004


I have server MDK 9.2 and 10 clients (lan), and client (IP 192.168.1.100) want open game and
nobody can't connect to him via internet, why? in local network is OK.
ports for open:
TCP ports:
80, 6667, 28910, 29900, 29920
UDP ports:
4321, 27900

my rules:
ACCEPT  net     fw      tcp     80,443,53,22,20,21,25,109,110,143       -
ACCEPT  net     fw      udp     53      -
ACCEPT  masq    fw      tcp     80,443,53,22,20,21,25,109,110,143       -
ACCEPT  masq    fw      udp     53      -
ACCEPT  loc     fw      tcp     80,443,53,22,20,21,25,109,110,143       -
ACCEPT  loc     fw      udp     53      -
ACCEPT  masq    fw      tcp     domain,bootps,http,https,631,imap,pop3,smtp,nntp,ntp    -
ACCEPT  masq    fw      udp     domain,bootps,http,https,631,imap,pop3,smtp,nntp,ntp    -
ACCEPT  fw      masq    tcp     631,515,137,138,139     -
ACCEPT  fw      masq    udp     631,515,137,138,139     -
ACCEPT  loc     fw      tcp     8080
ACCEPT  fw      net     tcp     80
ACCEPT  masq    fw      tcp     8080
ACCEPT  net     fw      tcp     113
ACCEPT  masq    fw      tcp     113
ACCEPT  loc     fw      tcp     113
ACCEPT  net     fw      udp     113
ACCEPT  masq    fw      udp     113
ACCEPT  loc     fw      udp     113
ACCEPT  fw      loc     udp     137,138,139
ACCEPT  fw      loc     tcp     137,138,139,445
ACCEPT  fw      loc     udp     1024            137
ACCEPT  loc     fw      udp     137,138,139
ACCEPT  loc     fw      tcp     137,138,139,445
ACCEPT  loc     fw      udp     1024            137

ACCEPT  net     fw      tcp     6667,28910,29900,29920
ACCEPT  loc     fw      tcp     6667,28910,29900,29920
ACCEPT  loc     fw      udp     4321,27900
DNAT    net     loc:192.168.1.100       tcp     6667,28910,29900,29920
ACCEPT  masq    fw      tcp     6667,28910,29900,29920
ACCEPT  masq    fw      udp     4321,27900
ACCEPT  net     fw      udp     4321,27900

regards
radek



More information about the Shorewall-newbies mailing list