Can't Access Linux Router

Amir · 09-13-2003, 02:40 PM

I have the following network setup:

WWW
.....|
Linux Router
.....|
Wireless Router
|......................|
XP1................XP2

I used the HOWTO: http://en.tldp.org/HOWTO/IP-Masquerade-HOWTO/

I am using the stronger firewall, but i think its too strong for what i want. When i used the simple firewall i was able to use vnc and ssh login with putty from my XP machines, but now i can't do that. Infact i can't even ping eth1 (which goes to my wireless router) anymore. Here is the strong firewall config:

http://en.tldp.org/HOWTO/IP-Masquera...2.4.X-STRONGER

How can i edit this firewall so that i can use vnc and ssh login(putty) from my internal network and from any external location?

Any help would be greatly appreciated.

Mara · 09-13-2003, 04:29 PM

It IS too restrictive in your case. My modification:

Code:

# ----- Begin OPTIONAL INPUT Section -----
#

# HTTPd - Enable the following lines if you either run a WWW server on
#         the IPMASQ server -OR- plan on PORTFW'ing HTTP traffic to
#         an internal WWW server
#
#$IPCHAINS -A input -i $EXTIF -p tcp -s 0.0.0.0/0 -d $EXTIP 80 -j ACCEPT

$IPCHAINS -A input -i $EXTIF -p tcp -s 0.0.0.0/0 -d $EXTIP 22 -j ACCEPT
#
# ----- End OPTIONAL INPUT Section -----

It should allow SSH. I don't remember VNC ports, so I can't write rules for it.

voltron1011 · 09-17-2003, 02:50 PM

are you using the wireless router as an access point or a full fledged router? I would leave the "WAN" port alone on the wireless router and just use it as a wireless access point / switch. Does it have a built in 4 port switch? I have a D-Link DI-614 router at home, but i can access it wirelessly because it is part of the switch, not the router (do you follow?).