netfilter-bounces@xxxxxxxxxxxxxxxxxxx wrote: > I have one crazy machine at our home office that must > communicate on port 6847 to an outside company. This one > machine went through our old proxy server until it died last > week. We're using IPTABLES through > rc.firewall-2.4 on a Linux proxy, but it doesn't seem to be > allowing this communication to occur. > > Would this be handled through port forwarding or NAT? I was > under the impression that our firewall was set up to allow > all traffic, initated from the LAN, through. This apparently isn't > the case, however. >From inside (LAN) to outside (internet or something) = SNAT/MASQUERADE. >From outside to inside = DNAT (port forwarding). In case of a proxy you'd probably be using Squid, and I doubt Squid will let you communicate on port 6847. I'm not familiar with the script so I can't say what's wrong. Gr, Rob
