LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   need help with port forwarding please (https://www.linuxquestions.org/questions/linux-newbie-8/need-help-with-port-forwarding-please-125267/)

chatfield 12-12-2003 12:45 PM
need help with port forwarding please
 
I'm using a redhat linux 7.2 box as a webserver and as a firewall for my infernal(and internal) network. I have two nics in this system, one public, one private.

On the network, I have a WinXP Pro system which handles my video surveilence network. It dishes out to port 8013.

I can access it fine using a web browser on the internal network by using it's IP 192.168.1.8:8013. I need to be able to come in from the world and jump from the linux box to win box.

My linux box is using gshield. I tried to set up the forwarding by using one of the examples in "forwards". When I restart, I get stuck in a loop. Can anyone tell me what I'm missing.

I'm very, very new and inexperienced with linux so please be as specific as possible.

Thanks in advance for any help.

Chris

ac1980 12-12-2003 02:18 PM
Quote:
please be as specific as possible.
Wise advice... btw, what about telling us something about
1) how your config files look like
2) what messages you get
Otherways it would be hard to help you :)

Ale

chatfield 12-12-2003 02:48 PM
Which config file? Would you just need to see the one for gshield or are there others you would need to look at as well?

If you were trying to accomplish this, how would you do it. Is there a better method (without buying new equipment) for doing this.

To recap...When I come into my linux box from the public IP, I need to be forwarded to the webserver on the WinXP Pro box thru port 8013, instead of just seeing my website on the linux box. This is so that I can access my video surveilence system from home.

ac1980 12-12-2003 03:54 PM
Background: a firewall in integrated in (almost) every linux system: what actually takes care of rejecting and/or forwarding is iptables, which mostly resides in kernel. However, iptables config is pretty hard to understand. Have a look by 'typing iptables --list'.
Think of it as a list of which streets are open or blocked, and you need to allow certain points to be connected. Unless you know really well the city (your network) and spend much time thinking at this, you would likely open the main avenues. This is quite unsafe, since burglers, cia agents and even tanks could get stright to your city core.
That's where 'firewalls' come in: they ease you the task to only allow wanted folks in your town (sounds xenophobist, does't it? ;p )
Back to the point:
I actually use shorewall as a firewall, not gshield, but i suppose gshield too has a config file/dir under /etc: how did you setup the firewall?

For example, in my shorewall, I would have pu this line in /etc/shorewall/rules:
Code:
#      #ACTION        SOURCE          DEST            PROTO  DEST    SOURCE  ORIGINAL
#      #                                                      PORT    PORT(S) DEST
#      DNAT            net            loc:192.168.1.8 tcp    8013
So please look for a /etc/gshield or similar and post it


All times are GMT -5. The time now is 09:27 AM.