Mailing List ecs-isp@2rosenthals.com Archived Message #430

From: "Massimo S." <ecs-isp@2rosenthals.com> Full Headers
Undecoded message
Subject: Re: [eCS-ISP] help about an Injoy FW rule
Date: Wed, 23 Nov 2022 22:42:35 +0100
To: eCS ISP Mailing List <ecs-isp@2rosenthals.com>



Il 23/11/2022 17:38, Steven Levine ha scritto:
In <list-5662123@2rosenthals.com>, on 11/23/22
    at 01:23 PM, "Massimo S." <ecs-isp@2rosenthals.com> said:

Hi Massimo,

i should add a 2nd (public/static) IP to a portmap rule,

OK, so what's not working with your new rule?

i need to add a 2nd IP

e.g. 1.2.3.4 and 2.3.4.5
those IP are not contiguos e.g. 1.2.3.4 and 1.2.3.5

i've read the firestart PDF, but i don't find any hint about this
situation.

As you should know by now, the ijfw docs are light on tutorial content.
For this, you need to search the .cnf files.  If something does not work,
you need to ask questions here and if that fails open an issue at bitwise
works.

myportmap_in
Destination-Port = "53000",
         Source = "5.6.7.8",
Destination = "My_IP",
Rule-Action = Portmap,
Mapping-Dest-IP = "192.168.1.3",
Mapping-Dest-Port = 1234

I've never needed to use portmapping here, but this looks OK for the
inbound side.

Based on my reading of the .cnf files, you may need a corresponding
outbound mapping.  The most recent distros include portmap examples in:

   firerule.cnf
   ip_redir.cnf
   portmap.cnf

Older distros appear to omit the last two.


Steven

i've seen those 3 .cnf, but they are completely useless
all the sources are just one IP this is a (much) basic configuration

thanks

massimo

Subscribe: Feed, Digest, Index.
Unsubscribe
Mail to ListMaster