[Shorewall-users] Access thru FW for Flexlm
mgnoble at cox.net
Thu Dec 4 19:33:53 PST 2003
Just found the answer, for whoever is interested the following will work:
ACCEPT:info dmz:192.168.12.30 loc:192.168.11.5 tcp
It appears that flexlm (or in this case passibly Cadence) uses port
32899 as well.
I proved that it would work by opening up full access from dmz to loc
and looking at the
logs which showed me port 32899 was be used as well on every request.
Tom Eastep wrote:
>On Thu, 4 Dec 2003, Mike Noble wrote:
>>Can anybody help me with this problem, I have a machine in my DMZ which
>>needs to access
>>a flexlm license from a machine in the LOC.
>>I have added the following rule:
>>ACCEPT:info dmz:192.168.12.30 loc:192.168.11.5 tcp
>>ACCEPT:info dmz:192.168.12.30 loc:192.168.11.5 udp
>>I added these but to no avail.
>>ACCEPT:info loc:192.168.11.5 dmz:192.168.12.30 tcp
>>ACCEPT:info loc:192.168.11.5 dmz:192.168.12.30 udp
>>5280 is the port number that the licence is at.
>>Thanks in advance, I really need to get this woking.
>A) If you "shorewall clear", does this then work?
>B) What are you seeing in your log when you try this connection?
>Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
>Shoreline, \ http://shorewall.net
>Washington USA \ teastep at shorewall.net
>Shorewall-users mailing list
>Post: Shorewall-users at lists.shorewall.net
More information about the Shorewall-users