[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] Firewall help
- Subject: RE: [cobalt-users] Firewall help
- From: "Benoit Perreault" <bperreault@xxxxxxxxxxxxx>
- Date: Thu Aug 3 07:31:00 2000
Hi,
I try this
Allow 207.253.219.50/29 Any Any Any All
Allow Any Any 207.253.219.50/29 Any All
Allow 207.253.219.50/29 Any 10.0.0.10/8 Any All
Allow 10.0.0.10/8 Any 207.253.219.50/29 Any All
Allow 207.253.219.50/29 Any 207.253.219.54/29 Any All
Allow 10.0.0.10/8 Any 207.253.219.50/29 Any All
Allow 207.253.219.50/29 Any 207.253.219.0/8 Any All
Allow 10.0.0.10/8 Any 207.253.219.50/29 Any All
Allow 207.253.219.50/29 Any Any Any All
Allow 10.0.0.10/8 Any 207.253.219.50/29 Any All
And still nothing. I'm cluless
The Raq2 Adress id 207.253.219.50
The Qube2 Adress id 207.253.219.54 and 10.0.0.10
I want the raq to be visible from net Lan et the Net.
----
Benoit Perreault
Neve Refrigeration Inc.
1290 Labadie
Longueuil, Quebec
J4N 1C7
Tel : (450) 677-4588
Fax : (450) 677-8005
E-Mail : neverefrigeration@xxxxxxxxxxxxx <mailto:Email :
neverefrigeration@xxxxxxxxxxxxx>
Web : http://www.neveref.qc.ca
-----Original Message-----
From: Vachon, Scott [mailto:Scott.Vachon@xxxxxxxxxxxxxx]
Sent: Thursday, August 03, 2000 9:54 AM
To: 'Benoit Perreault'
Subject: RE: [cobalt-users] Firewall help
OK. I think you actually access it but since you block that IP essentially
at the firewall, the acks fail coming back to the LAN network.I think you
can fix it by allowing 207.253.219.50 (and the selected service ((http, ftp,
telnet)) ) to destination 207.253.219.0 (network) and the deny any any
should take care of blocking anything you don't specify from 207.253.219.50.
Let me know how you make out !
~Scott~
-----Original Message-----
From: Benoit Perreault [mailto:bperreault@xxxxxxxxxxxxx]
Sent: Thursday, August 03, 2000 9:31 AM
To: Vachon, Scott
Subject: RE: [cobalt-users] Firewall help
Hi,
The Raq2 Adress id 207.253.219.50
A can't acces it with IE5 (html), FTP and Telnet.
???
----
Benoit Perreault
Neve Refrigeration Inc.
Longueuil, Quebec
E-Mail : neverefrigeration@xxxxxxxxxxxxx <mailto:Email :
neverefrigeration@xxxxxxxxxxxxx>
-----Original Message-----
From: Vachon, Scott [mailto:Scott.Vachon@xxxxxxxxxxxxxx]
Sent: Thursday, August 03, 2000 9:24 AM
To: 'bperreault@xxxxxxxxxxxxx'
Subject: RE: [cobalt-users] Firewall help
Benoit,
Not sure what the IP of the Raq2 is here. Perhaps you are blocking telnet on
the outbound from the LAN ?
-----Original Message-----
From: Benoit Perreault [mailto:bperreault@xxxxxxxxxxxxx]
Sent: Thursday, August 03, 2000 8:44 AM
To: Cobalt-Users@List. Cobalt. Com
Subject: [cobalt-users] Firewall help
Hi,
I have the following configuration :
1 x Qube2 with Nat, and Firewall
1 x Raq2
1 X Router
LAN
|
Qube2 Raq2
| |
\ /
\/
Router
|
Net
I want to acces a Raq2 from my lan and it doesn't let me acces it.
Any clues ?
IP Filtering Rule List
Policy Source Destination Protocol IP Port IP Port
Allow Any Any 207.253.219.54/29 21 TCP
Allow Any Any 207.253.219.54/29 23 TCP
Allow Any Any 207.253.219.54/29 25 TCP
Allow Any Any 207.253.219.54/29 53 TCP
Allow Any Any 207.253.219.54/29 79 TCP
Allow Any Any 207.253.219.54/29 80 TCP
Allow Any Any 207.253.219.54/29 81 TCP
Allow Any Any 207.253.219.54/29 110 TCP
Allow Any Any 207.253.219.54/29 113 TCP
Allow Any Any 207.253.219.54/29 119 TCP
Allow Any Any 207.253.219.54/29 123 TCP
Allow Any Any 207.253.219.54/29 123 UDP
Allow Any Any 207.253.219.54/29 139 TCP
Allow Any Any 207.253.219.54/29 143 TCP
Allow Any Any 207.253.219.54/29 161-162 TCP
Allow Any Any 207.253.219.54/29 Any ICMP
Allow Any Any 207.253.219.54/29 1025-65535 TCP
Allow Any Any 207.253.219.54/29 1025-65535 UDP
Allow 10.0.0.10/8 Any Any Any All
Deny Any Any Any Any All
----
Benoit Perreault
Neve Refrigeration Inc.
Longueuil, Quebec
E-Mail : neverefrigeration@xxxxxxxxxxxxx <mailto:Email :
neverefrigeration@xxxxxxxxxxxxx>
_______________________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To Subscribe or Unsubscribe, please go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users