I finaly found something in the logs, after enableing all the gShield logs. This what it looks like. Jun 21 15:49:10 rodnabba kernel: gShield (reserved drop) IN=eth0 OUT= MAC=xxx SRC=10.0.113.1 DST="My IP" LEN=328 TOS=0x00 PREC=0x00 TTL=63 ID=63273 PROTO=UDP SPT=67 DPT=68 LEN=308 gShield (reserved drop) IN=eth0 OUT= MAC= xxxx SRC=10.0.0.6 DST="My IP" LEN=48 TOS=0x08 PREC=0x00 TTL=63 ID=63456 DF PROTO=TCP SPT=80 DPT=2761 WINDOW=8760 RES=0x00 ACK SYN URGP=0 Since my ISP is using the 10.0.0.0 range for login, DNS and so on, it is obvious why I can't connect to 10.0.0.6 for login. gShield handles all private ranges on my "public" if as impossible and therefore is dropping all connections on this if as not allowed. I have tried to enable these two hosts and allso tried to enable these two ports with no luck. The only thing that worked was to remove the entire 10.0.0.0/8 range from reserved_addresses. My question is how do I allow these two hosts 10.0.0.6 and 10.0.113.1 to connect through the firewall and block out the rest. The thing is that if I am using the official way of logging in with the web browser everything is working, but that must be due to the fact that the webb browser opens a connection to 10.0.0.6 and all traffic is then related, but qadsl and lfck apparently doesn't do that. > -----Ursprungligt meddelande----- > Från: psyche-list-admin@xxxxxxxxxx > [mailto:psyche-list-admin@xxxxxxxxxx] För Tom Diehl > Skickat: den 14 juni 2003 00:24 > Till: psyche-list@xxxxxxxxxx > Ämne: Re: SV: Firewall and Login scripts > > > On Fri, 13 Jun 2003, Tomas Larsson wrote: > > > > On Thu, 12 Jun 2003, Tomas Larsson wrote: > > > > > > > This question is mainly directed to Swedish users. > > > > I'm using Telia ADSL, I have one RH8 box running as > > > firewall NAT and > > > > router. To automate login I am using qadsl and LFCK, not at > > > the same > > > > time though. My problems is that when the firewall is up > > > and running, > > > > neither qadsl or LFCK can login. Everything is started > > > automatically, > > > > firewall at 11 after IF brought up and qadsl/LFCK at > 60. When the > > > > RH-box for any reason is restarted, I have to > > > manually shut down > > > > and flush the firewall restart QADSL/LFCK and then enable > > > the firewall. > > > > I am using gShield to set up IP-tables. > > > > Obviously there is something I forgot to do but what? > > > > > > What is in the logs?? The answer should be in there. > > > > "login failed" or similar, nothing else. > > OK, let me ask the same question but a little differently, do > you see any messages from gShield in the logs? Something > prefixed with the gShield DropNLog in it. What I am thinking > is that gShield is not configured quite right and is > preventing your connection. I have seen a similar behavior > with ssh where if you have an established ssh session to a > remote machine > iptables/gShield allows it to continue but it will block new > connections. It is simply a matter of making sure the correct > ports are open. > > I do not know anything about your Swedish isp but what you > describe sounds > similar. > > HTH, > > -- > ......Tom Registered Linux User #14522 http://counter.li.org tdiehl@xxxxxxxxxxxx My current SpamTrap mtd123@xxxxxxxxxxxx -- Psyche-list mailing list Psyche-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/psyche-list -- Psyche-list mailing list Psyche-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/psyche-list
