Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: ivan on September 24, 2009, 10:00:01 PM

Title: IPCHAINs adding a template
Post by: ivan on September 24, 2009, 10:00:01 PM

Hi all

SME 7.4
Wonder if you can help: ( I have looked round on the forums but can't find a workable answer maybe I missed it)
I need to add the following rules to the masq what is the correct syntax for the template file and can I use a file named 80AllowAppPorts
Lines required:
 /sbin/ipchains --append input -p tcp -i $INTERNALIF -d 0/0 500:501 -j ACCEPT
 /sbin/ipchains --append input -p tcp -i $INTERNALIF -d 0/0 1000:1001 -j ACCEPT
 /sbin/ipchains --append input -p tcp -i $INTERNALIF -d 0/0 5000:5001 -j ACCEPT
 /sbin/ipchains --append input -p tcp -i $INTERNALIF -d 0/0 10000:10001 -j ACCEPT
 /sbin/ipchains --append input -p tcp -i $INTERNALIF -d 0/0 1812:1813 -j ACCEPT

I require to be able to communicate out on to the internet on the ports above.

Thanks

Title: Re: IPCHAINs adding a template
Post by: Stefano on September 24, 2009, 10:23:25 PM

ivan

since kernel 2.4.X (i.e since a looooooooooong time ago)  the packet filter is iptables, so your rules are pretty useless..

that said, as far as I understand the rules and from your sentence "I require to be able to communicate out on to the internet on the ports above", I would say that you don't need anything as SME does not block outgoing traffic

HTH

Title: Re: IPCHAINs adding a template
Post by: ivan on September 25, 2009, 06:47:25 AM

Thanks for the heads up.
SME formus are very very managers

Thanks again