Author Topic: firewall/port forwarding issue (??)  (Read 3748 times)

Zaerc

  • Alumni
  • LinuxMCE God
  • *
  • Posts: 2256
  • Department of Redundancy Department.
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #15 on: March 21, 2008, 12:04:07 am »
Not by default, but in your setup it is (from the looks of it).  Can you show me the output of "ifconfig -a" and "route -n" as well?
"Change is inevitable. Progress is optional."
-- Anonymous


simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #16 on: March 21, 2008, 12:33:52 am »
Not by default, but in your setup it is (from the looks of it).  Can you show me the output of "ifconfig -a" and "route -n" as well?
ifconfig -a
Quote
eth0      Link encap:Ethernet  HWaddr 00:17:3F:08:F1:C2
          inet addr:192.168.80.1  Bcast:192.168.80.255  Mask:255.255.255.0
          inet6 addr: fe80::217:3fff:fe08:f1c2/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:137706684 errors:0 dropped:0 overruns:0 frame:0
          TX packets:137702986 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:28789092929 (26.8 GB)  TX bytes:49099482456 (45.7 GB)
          Interrupt:16

eth1      Link encap:Ethernet  HWaddr 00:1D:7D:24:63:1E
          inet addr:192.168.0.31  Bcast:192.168.0.255  Mask:255.255.255.0
          inet6 addr: fe80::21d:7dff:fe24:631e/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1183078 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1017106 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:504100098 (480.7 MB)  TX bytes:99105386 (94.5 MB)
          Interrupt:23 Base address:0x2000

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:1662923 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1662923 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:198434028 (189.2 MB)  TX bytes:198434028 (189.2 MB)

and route -n
Quote
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.80.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 eth0
0.0.0.0         192.168.0.1     0.0.0.0         UG    100    0        0 eth1
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

Zaerc

  • Alumni
  • LinuxMCE God
  • *
  • Posts: 2256
  • Department of Redundancy Department.
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #17 on: March 21, 2008, 12:53:02 am »
Looks all fine to me, the only thing I can think of when reading back is that you said in your original post that the ip-numbers of the Dreamboxes were .5-.7 and now you have forwarded to .2-.4, have thier IP#s been changed in the mean time?
"Change is inevitable. Progress is optional."
-- Anonymous


simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #18 on: March 21, 2008, 09:34:24 am »
Looks all fine to me, the only thing I can think of when reading back is that you said in your original post that the ip-numbers of the Dreamboxes were .5-.7 and now you have forwarded to .2-.4, have thier IP#s been changed in the mean time?

Hi!

No, these 5-7 were only given as samples... The real IP's are from 192.168.80.2-4, like in these last replies... Could i try with some other firewall?? Like Firestarter???
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

Zaerc

  • Alumni
  • LinuxMCE God
  • *
  • Posts: 2256
  • Department of Redundancy Department.
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #19 on: March 21, 2008, 12:38:22 pm »
I have no idea whether installing another firewall package would be a good idea, you can try but don't be to surprised if it breaks a few things.  On the other hand it might give you some clues as to what is wrong.

As far as I can tell firewalling (and networking) have been setup correctly.  So I would expect the problem to lie elsewhere.
"Change is inevitable. Progress is optional."
-- Anonymous


simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #20 on: March 29, 2008, 01:30:52 am »
OK, i reinstalled the CORE, switched the network interfaces, the port frwarding still doesn't work...

here is my configuration:
Quote
udp     4569 to 0     0         core_input         Delete
udp    5060 to 0    0       core_input       Delete
udp    2000 to 0    0       core_input       Delete
tcp    2000 to 0    0       core_input       Delete
udp    0 to 8000    0    0    core_input       Delete
tcp    0 to 8000    0    0    core_input       Delete
udp    4000 to 4000    4000    192.168.80.15    port_forward       Delete
tcp    4001 to 4001    4001    192.168.80.15    port_forward       Delete
udp    5901 to 5901    5900    192.168.80.2    port_forward       Delete

Clues maybe?
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #21 on: March 30, 2008, 09:02:54 pm »
also, here is my iptables -L -v -n -t nat:

Quote
linuxmce@dcerouter:~$ sudo iptables -L -v -n -t nat
Chain PREROUTING (policy ACCEPT 304K packets, 19M bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 DNAT       udp  --  eth1   *       0.0.0.0/0            0.0.0.0/0           udp dpt:4000 to:192.168.80.15:4000
   21  1092 DNAT       tcp  --  eth1   *       0.0.0.0/0            0.0.0.0/0           tcp dpt:4001 to:192.168.80.15:4001
    0     0 DNAT       udp  --  eth1   *       0.0.0.0/0            0.0.0.0/0           udp dpt:5901 to:192.168.80.2:5900

Chain POSTROUTING (policy ACCEPT 2144K packets, 157M bytes)
 pkts bytes target     prot opt in     out     source               destination
 2834  172K MASQUERADE  0    --  *      eth1    192.168.80.0/24     !192.168.80.0/24

Chain OUTPUT (policy ACCEPT 2144K packets, 157M bytes)
 pkts bytes target     prot opt in     out     source               destination
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #22 on: March 31, 2008, 07:45:56 pm »
i ain't letting it go...  ;)

Can i set this port forwarding issues with a tool like guidedog or some???

ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #23 on: April 02, 2008, 09:10:24 am »
is there anyone, that has a working port forwarding??? anyone???
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best

royw

  • Guru
  • ****
  • Posts: 261
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #24 on: April 05, 2008, 09:06:02 am »
Following this thread, I've been able to get forwarding thru the LMCE working.  Basically my network is like this:

IPS -> linksys router --+--> LMCE --> home LAN
                                   +--> wireless router --> guest LAN

So I could confirm the port forwarding from the guest LAN to the home LAN.  I still have a problem with either my linksys router port forwarding or my ISP.

BTW,   I'm still using 0710beta3 x86.

HTH,
Roy

nswint

  • Regular Poster
  • **
  • Posts: 39
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #25 on: April 12, 2008, 10:48:47 pm »
I was unable to get it to work after much tweaking.  I would suggest to the developers to check out the webmin linux firewall module page and consider rewriting the firewall portion adding remote assistance in the mix, denying everything that is not explicitly  added.


http://doxfer.com/Webmin/LinuxFirewall

simon_b

  • Veteran
  • ***
  • Posts: 69
    • View Profile
Re: firewall/port forwarding issue (??)
« Reply #26 on: April 14, 2008, 08:45:21 am »
I was unable to get it to work after much tweaking.  I would suggest to the developers to check out the webmin linux firewall module page and consider rewriting the firewall portion adding remote assistance in the mix, denying everything that is not explicitly  added.


http://doxfer.com/Webmin/LinuxFirewall


So, @nswint, your port forwarding works with this "Doxfer-Webmin" upgrade...or whatever it is...??
« Last Edit: April 14, 2008, 09:44:56 am by simon_b »
ex Mythtv fan, the LinuxMCE newbie
----------
hoping for the best