Hi guys
Im really stuck with this one, so i hope you can help me.
I have...
ADSL Router IP:100.100.100.1
RedHat9 Server
Shorewall - firewall
eth0 IP:100.100.100.10 --> ADSL Router
eth1 IP:192.168.1.1 --> Switch
Win 2000 computer
1 NIC IP:192.168.1.2 --> Switch
I wont to share the internet form the Server to the 2k computer and have a firewall. So i got Shorewall, i set it up fine.
I can...
Browse the internet form the server
Go throw the Lan with Samba to share files (i set Shorewall so i could)
I cant...
Browse the internet from the 2k computer
Its gateway is -- 192.168.1.1
Its DNS server is -- 100.100.100.1
I dont no what to do!? I have found details on how to get IP forwarding to work with data from the internet to a client, but not how to get a client throw the server to the internet. Im starting to think that i am missing something or im barking up the wrong tree.
Below is my Shorewall Rules file...
Code:
##############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER
# PORT PORT(S) DEST LIMIT SET
#
# Accept DNS connections from the firewall to the network
#
ACCEPT fw net tcp 53
ACCEPT fw net udp 53
#
# Accept SSH connections from the local network for administration
#
ACCEPT loc fw tcp 22
#
# Allow Ping To And From Firewall
#
ACCEPT loc fw icmp 8
ACCEPT net fw icmp 8
ACCEPT fw loc icmp 8
ACCEPT fw net icmp 8
#
#allow vnc on :1 -Tim
ACCEPT loc fw tcp 5901
#
#allow samba to work -Tim
ACCEPT fw loc udp 137:139
ACCEPT fw loc tcp 137,139,445
ACCEPT fw loc udp 1024: 137
ACCEPT loc fw udp 137:139
ACCEPT loc fw tcp 137,139,445
ACCEPT loc fw udp 1024: 137
#
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
Below is the Policy file...
Code:
###############################################################################
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
loc net ACCEPT
# If you want open access to the Internet from your Firewall
# remove the comment from the following line.
fw net ACCEPT
net all DROP info
# THE FOLLOWING POLICY MUST BE LAST
all all REJECT info
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
Please help guys!!!
THANKS
