Very Computer

by **--==[bolMyn]==-** » Fri, 31 Dec 1999 04:00:00

O.K. I have ipmasqadm installed from rpm but I get the following error when
trying to apply "ipmasqadm portfw -f". This is what I am getting:

portfw: setsockopt failed: Invalid argument

How do I check if that required "port forward" options is compiled into my
kernel? When I was compiling my 2.2.13 kernel, some of the IP masq options
where greyed out . How do I re-enable them because I think, that this is
where that port forwarding might be?

Thanks.

Your Kermel has to support ip masquarade and port forward. If not, you
need to recompile your Kernel.
In addition, you need to run ipmasqadm to do port forward.
I got the following script from the How-to document.
It's just an example.
###### Redirect WWW Server #######
/usr/sbin/ipmasqadm portfw -f
/usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80
Replace $extip with your internet address, and replace 192.168.0.10 with
your Web server local address.
You can go to the following site to downlaod ipmasqadm
http://rpmfind.net/linux/RPM/contrib/libc6/i386/ipmasqadm-0.4.2-3.i38...

I've posted this in: redhat.networking.general with no response, so here
goes:
I've set up a Linux RH6.1 machine to act as a firewall between my internal
LAN and the internet. The connection I have to the internet is a DSL modem
with static IP. I basicly read the how-tos on configuring the firewall to
restrict incommng requests and allow outgoig request. Everything works fine.
I'm now trying to figure out how to redirect/forward WWW requests from the
internet to my webserver behind the firewall. I'm sure it has something to
do with additional ipchain commands, but I've yet to see a simple example I
can follow.
Could someone please post a simple ipchain command for redirecting external
requests (internet) to an internal machine through the firewall?
thanks for any help,

by **Acid_Phre** » Sat, 01 Jan 2000 04:00:00

I'm curious as to why you would want to clear your address tables in
the first place? Unless you wanted to make sure it's clear before
you apply some forwarding rules....hum....

Yup, if you did not compile in support when you recompiled the kernel
then you will need to recompile again and make sure you enable it.

Acid

On Thu, 30 Dec 1999 16:31:49 GMT, "--==[bolMyn]==--"

>O.K. I have ipmasqadm installed from rpm but I get the following error when
>trying to apply "ipmasqadm portfw -f". This is what I am getting:

>portfw: setsockopt failed: Invalid argument

>How do I check if that required "port forward" options is compiled into my
>kernel? When I was compiling my 2.2.13 kernel, some of the IP masq options
>where greyed out . How do I re-enable them because I think, that this is
>where that port forwarding might be?

>Thanks.

>Your Kermel has to support ip masquarade and port forward. If not, you
>need to recompile your Kernel.
>In addition, you need to run ipmasqadm to do port forward.
>I got the following script from the How-to document.
>It's just an example.
>###### Redirect WWW Server #######
>/usr/sbin/ipmasqadm portfw -f
>/usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80
>Replace $extip with your internet address, and replace 192.168.0.10 with
>your Web server local address.
>You can go to the following site to downlaod ipmasqadm
>http://rpmfind.net/linux/RPM/contrib/libc6/i386/ipmasqadm-0.4.2-3.i38...

>I've posted this in: redhat.networking.general with no response, so here
>goes:
>I've set up a Linux RH6.1 machine to act as a firewall between my internal
>LAN and the internet. The connection I have to the internet is a DSL modem
>with static IP. I basicly read the how-tos on configuring the firewall to
>restrict incommng requests and allow outgoig request. Everything works fine.
>I'm now trying to figure out how to redirect/forward WWW requests from the
>internet to my webserver behind the firewall. I'm sure it has something to
>do with additional ipchain commands, but I've yet to see a simple example I
>can follow.
>Could someone please post a simple ipchain command for redirecting external
>requests (internet) to an internal machine through the firewall?
>thanks for any help,

by **crash_ab..** » Sat, 01 Jan 2000 04:00:00

Well, that was sort of my point. When I tried to compile ipfadm into
my kernel that options was grayed out. I could not select it. What is
the triger to make sure that I can include this in the compilation of
my kernel?

> I'm curious as to why you would want to clear your address tables in
> the first place? Unless you wanted to make sure it's clear before
> you apply some forwarding rules....hum....

> Yup, if you did not compile in support when you recompiled the kernel
> then you will need to recompile again and make sure you enable it.

> Acid

> On Thu, 30 Dec 1999 16:31:49 GMT, "--==[bolMyn]==--"

> >O.K. I have ipmasqadm installed from rpm but I get the following
error when
> >trying to apply "ipmasqadm portfw -f". This is what I am getting:

> >portfw: setsockopt failed: Invalid argument

> >How do I check if that required "port forward" options is compiled
into my
> >kernel? When I was compiling my 2.2.13 kernel, some of the IP masq
options
> >where greyed out . How do I re-enable them because I think, that
this is
> >where that port forwarding might be?

> >Thanks.

- Show quoted text -

> >Your Kermel has to support ip masquarade and port forward. If not,
you
> >need to recompile your Kernel.
> >In addition, you need to run ipmasqadm to do port forward.
> >I got the following script from the How-to document.
> >It's just an example.
> >###### Redirect WWW Server #######
> >/usr/sbin/ipmasqadm portfw -f
> >/usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80
> >Replace $extip with your internet address, and replace 192.168.0.10
with
> >your Web server local address.
> >You can go to the following site to downlaod ipmasqadm
> >http://rpmfind.net/linux/RPM/contrib/libc6/i386/ipmasqadm-0.4.2-
3.i386.html

> >I've posted this in: redhat.networking.general with no response, so
here
> >goes:
> >I've set up a Linux RH6.1 machine to act as a firewall between my
internal
> >LAN and the internet. The connection I have to the internet is a DSL
modem
> >with static IP. I basicly read the how-tos on configuring the
firewall to
> >restrict incommng requests and allow outgoig request. Everything
works fine.
> >I'm now trying to figure out how to redirect/forward WWW requests
from the
> >internet to my webserver behind the firewall. I'm sure it has
something to
> >do with additional ipchain commands, but I've yet to see a simple
example I
> >can follow.
> >Could someone please post a simple ipchain command for redirecting
external
> >requests (internet) to an internal machine through the firewall?
> >thanks for any help,

Sent via Deja.com http://www.deja.com/
Before you buy.

by **Darren Schlam** » Tue, 04 Jan 2000 04:00:00

There are at least two questions in your kernel configuration which need to
be checked - the first is for CONFIG_FIREWALL, the second is IP:Firewalling.
When compiling a kernel, the way you check the first option changes which of
the additional options are available (for example, if you do not include
networking in your kernel, all of the NIC modules should also be grayed out,
and if you do not include sound support, you cannot compile any soun card
options) Also, I am assuming that you used make xconfig. It might be that
you chose to not include a prerequisite kernel option, which lead to stuff
you wanted being greyed out.

Darren Schlamp

> O.K. I have ipmasqadm installed from rpm but I get the following error
when
> trying to apply "ipmasqadm portfw -f". This is what I am getting:

> portfw: setsockopt failed: Invalid argument

> How do I check if that required "port forward" options is compiled into my
> kernel? When I was compiling my 2.2.13 kernel, some of the IP masq
options
> where greyed out . How do I re-enable them because I think, that this is
> where that port forwarding might be?

> Thanks.

Quote:> Your Kermel has to support ip masquarade and port forward. If not, you
> need to recompile your Kernel.
> In addition, you need to run ipmasqadm to do port forward.
> I got the following script from the How-to document.
> It's just an example.
> ###### Redirect WWW Server #######
> /usr/sbin/ipmasqadm portfw -f
> /usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80
> Replace $extip with your internet address, and replace 192.168.0.10 with
> your Web server local address.
> You can go to the following site to downlaod ipmasqadm

http://rpmfind.net/linux/RPM/contrib/libc6/i386/ipmasqadm-0.4.2-3.i38...

- Show quoted text -

> I've posted this in: redhat.networking.general with no response, so here
> goes:
> I've set up a Linux RH6.1 machine to act as a firewall between my internal
> LAN and the internet. The connection I have to the internet is a DSL modem
> with static IP. I basicly read the how-tos on configuring the firewall to
> restrict incommng requests and allow outgoig request. Everything works
fine.
> I'm now trying to figure out how to redirect/forward WWW requests from the
> internet to my webserver behind the firewall. I'm sure it has something to
> do with additional ipchain commands, but I've yet to see a simple example
I
> can follow.
> Could someone please post a simple ipchain command for redirecting
external
> requests (internet) to an internal machine through the firewall?
> thanks for any help,

by **--==[bolMyn]==-** » Tue, 04 Jan 2000 04:00:00

It was compilation issue. However, what everybody failed to point out was
that if you did not select "Code maturity level options," the "experimental
drivers like portfw would not be turned on and you would not be able to
select it. I KNOW ABOUT ALL THE OTHER THINGS. I just needed to know why I
couldn't select them. Of course, nobody was giving me the answer that would
solve my problem until today, when I finally decided to go for compilation
one more time and paying a close attention what turns on what. That's how I
came across the "Code maturity level options" (ironically, this is the very
first option in xconfig). Again, all the answers I was given were not
addressing the question I asked. Hopefully, if someone else has a similar
problem to mine, maybe my tedious "looking into it" will help them out...

> There are at least two questions in your kernel configuration which need
to
> be checked - the first is for CONFIG_FIREWALL, the second is
IP:Firewalling.
> When compiling a kernel, the way you check the first option changes which
of
> the additional options are available (for example, if you do not include
> networking in your kernel, all of the NIC modules should also be grayed
out,
> and if you do not include sound support, you cannot compile any soun card
> options) Also, I am assuming that you used make xconfig. It might be that
> you chose to not include a prerequisite kernel option, which lead to stuff
> you wanted being greyed out.

> Darren Schlamp

> > O.K. I have ipmasqadm installed from rpm but I get the following error
> when
> > trying to apply "ipmasqadm portfw -f". This is what I am getting:

> > portfw: setsockopt failed: Invalid argument

> > How do I check if that required "port forward" options is compiled into
my
> > kernel? When I was compiling my 2.2.13 kernel, some of the IP masq
> options
> > where greyed out . How do I re-enable them because I think, that this
is
> > where that port forwarding might be?

> > Thanks.

> > Your Kermel has to support ip masquarade and port forward. If not, you
> > need to recompile your Kernel.
> > In addition, you need to run ipmasqadm to do port forward.
> > I got the following script from the How-to document.
> > It's just an example.
> > ###### Redirect WWW Server #######
> > /usr/sbin/ipmasqadm portfw -f
> > /usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80
> > Replace $extip with your internet address, and replace 192.168.0.10 with
> > your Web server local address.
> > You can go to the following site to downlaod ipmasqadm

http://rpmfind.net/linux/RPM/contrib/libc6/i386/ipmasqadm-0.4.2-3.i38...

- Show quoted text -

> > I've posted this in: redhat.networking.general with no response, so here
> > goes:
> > I've set up a Linux RH6.1 machine to act as a firewall between my
internal
> > LAN and the internet. The connection I have to the internet is a DSL
modem
> > with static IP. I basicly read the how-tos on configuring the firewall
to
> > restrict incommng requests and allow outgoig request. Everything works
> fine.
> > I'm now trying to figure out how to redirect/forward WWW requests from
the
> > internet to my webserver behind the firewall. I'm sure it has something
to
> > do with additional ipchain commands, but I've yet to see a simple
example
> I
> > can follow.
> > Could someone please post a simple ipchain command for redirecting
> external
> > requests (internet) to an internal machine through the firewall?
> > thanks for any help,

Very Computer

Firwall/forward/redierct/ipchains question

Firwall/forward/redierct/ipchains question

Firwall/forward/redierct/ipchains question

Firwall/forward/redierct/ipchains question

Firwall/forward/redierct/ipchains question

Firwall/forward/redierct/ipchains question