shorewall-firewall problems
Posted: Feb 25th, '14, 02:32Hi,
I have a computer configured as a firewall.
The computer has 3 nics: net, loc dmz .
In dmz I have 5 servers running. I have this configuration system for over 7 years. I have used this setup with mandriva (can not remember which version) and then mageia 2 and 3.
The method I 've always used is to disable the firewall ( I select everything in drakfirewall ) . Then I created my own script with the rules. This has worked well with me using iptables rules and shorewall, to version 3 of mageia .
Now with mga4 not work. Have definitely changed a lot in the firewall and it seems that there is a conflict between drakfirewall and shorewall . Always used different files for configuration.
Every time I make a change in my file drakfirewall sorewall rules is deleted . Before not happen.
If I turn off the firewall and run shorewall with my own rules, does not recognize that I open ports and neither dnat. I do not use common ports for the web. Are development servers.
When I try to use the drakfirewal, I can not configure dnat. If I open ssh communication, drakfirewall assigned port 22. I changed this port to xxxx in macro.SSH file.
Definitely. drakfirewall not read shorewall files, but if I deactivate drakfirewall, I can not use shorewall. I do not know why.
What is the solution to use 3 nics?
How to manually configure the ports to be used in drakfirewall?
How I do to disable the internal firewall and only use shorewall? (I prefer this)
thanks
I have a computer configured as a firewall.
The computer has 3 nics: net, loc dmz .
In dmz I have 5 servers running. I have this configuration system for over 7 years. I have used this setup with mandriva (can not remember which version) and then mageia 2 and 3.
The method I 've always used is to disable the firewall ( I select everything in drakfirewall ) . Then I created my own script with the rules. This has worked well with me using iptables rules and shorewall, to version 3 of mageia .
Now with mga4 not work. Have definitely changed a lot in the firewall and it seems that there is a conflict between drakfirewall and shorewall . Always used different files for configuration.
Every time I make a change in my file drakfirewall sorewall rules is deleted . Before not happen.
If I turn off the firewall and run shorewall with my own rules, does not recognize that I open ports and neither dnat. I do not use common ports for the web. Are development servers.
When I try to use the drakfirewal, I can not configure dnat. If I open ssh communication, drakfirewall assigned port 22. I changed this port to xxxx in macro.SSH file.
Definitely. drakfirewall not read shorewall files, but if I deactivate drakfirewall, I can not use shorewall. I do not know why.
What is the solution to use 3 nics?
How to manually configure the ports to be used in drakfirewall?
How I do to disable the internal firewall and only use shorewall? (I prefer this)
thanks