Hylafax Mailing List Archives

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

[hylafax-users] No route to host... hints...



In the redirection no keep state but in the pass in section, yes.

$allif = all interfaces... (I have 4)
$xfax = external ip for the fax server.
$sfax = internal server fax (192.168.203.x)

rdr on $allif proto { udp, tcp } from any to $xfax  port 4557 -> $sfax 
port 4557
rdr on $allif proto { udp, tcp } from any to $xfax  port 4559 -> $sfax 
port 4559
rdr on $allif proto { udp, tcp } from any to $xfax  port  444 -> $sfax 
port  444

$tcpstatepolicy = keep state.

pass in on $extif proto { tcp, udp } from any to any port 4559 flags S
$tcpstatepolicy
pass in on $extif proto { tcp, udp } from any to any port 4557 flags S
$tcpstatepolicy
pass in on $extif proto { tcp, udp } from any to any port  444 flags S
$tcpstatepolicy

Maybe un problem with the "flags" ?



On Mon, 2002-10-21 at 05:14, Claudio Prono wrote:
> Only a curiosity...in the configuration file of the OpenBSD firewall
> (/etc/pf.conf)
> the ridirected ports have the keep state active?
> If not...try it.
> 
> Eric Gendron wrote:
> 
> > Hi,
> >
> > With my problem, I made another test.
> >
> > On my home gateway machine, I try to sendfax (console mode)
> > to my work hylafax server and all work.
> >
> > So my problem is in my home gateway firewall settings?
> >
> > I can't connect to my hylafax server (via internet)
> > on my home lan through my Debian firewall (Nat).  Somebody
> > know what to do?
> >
> > Home Worstations
> > Debian Linux (sendfax or gfax) and Windows (cypheus)
> > (Sendfax can log but failed sending.  No route to host.
> > see my previous post please.)
> >
> > Home gateway
> > Debian Linux with nat.
> > (sendfax succesfull!)
> >
> > Work gateway
> > OpenBSD 3.1 snapshot
> > with redirection for port 4559, 4557 and 444 (tcp and udp)
> > to my local lan machine.
> >
> > Fax server
> > local machine on the lan with debian and hylafax.
> >
> > The fax server works great at work on any machine (except
> > the Mac G4... But it's not the problem now.)  Works on Linux
> > and works on windows users.
> >
> > Thanks again to every body.



____________________ HylaFAX(tm) Users Mailing List _______________________
  To subscribe/unsubscribe, click http://lists.hylafax.org/cgi-bin/lsg2.cgi
 On UNIX: mail -s unsubscribe hylafax-users-request@hylafax.org < /dev/null
  *To learn about commercial HylaFAX(tm) support, mail sales@hylafax.org.*



Home
Report any problems to webmaster@hylafax.org

HylaFAX is a trademark of Silicon Graphics Corporation.
Internet connectivity for hylafax.org is provided by:
VirtuALL Private Host Services