[ previous ] [ next ] [ threads ]
 
 From:  Steve Johnson <sjohnson at warpdriveonline dot com>
 To:  Steve Johnson <sjohnson at warpdriveonline dot com>
 Cc:  Lee Sharp <leesharp at hal dash pc dot org>, m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] no WAN access to DMZ http
 Date:  Mon, 06 Mar 2006 12:58:12 -0700
I checked with the ISP and found out that they block port 25, but 
nothing else. So now I'm really stumped as to why I'm not seeing http 
access attempts in the firewall log.

Thanks,
Steve

Steve Johnson wrote:
> Lee,
>
> Good idea, but no, that wasn't it. I switched webGUI protocol to https 
> and rebooted the firewall. I still get a connection timeout from the 
> accessing browser, and no record of the access attempt in the log.
>
> Thanks,
> Steve
>
> Lee Sharp wrote:
>> From: "Steve Johnson" <sjohnson at warpdriveonline dot com>
>>
>>
>>> Next, I set up a NAT rule to allow WAN traffic to access http on the 
>>> DMZ
>>> web server. I confirmed that m0n0wall also created the firewall rule
>>> allowing the access. I modified the rule to log packets handled by this
>>> rule.
>>
>>> Not only can I not access the http server from the WAN interface, I'm
>>> not even seeing any inbound http in the log, Nothing, either passed or
>>> blocked. I'm seeing typical  probing on ports 1025, 1026, 1027, 1029,
>>> 1433, but nothing inbound from the WAN in the lower range.
>>
>> Is your m0n0wall web interface http or https?  If http, it could be 
>> the antilockout rule.  Try changing m0n0wall to https and see if it 
>> works.
>>
>>                        Lee
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>