screend.conf - help an idiot

From: Terry (td3201@yahoo.com)
Date: Wed Apr 16 2003 - 18:13:30 EDT

• Next message: Irene A. Shilikhina: "Spamassassin & Perl version (on 4.0D)"
• Previous message: Paul LaMadeleine: "Problem upgrading from t64 5.1 to t64 5.1A"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

First off, thank you for your help in deciding on the
best path. Building the kernel for screend was easy.

I am trying to write a decent screend.conf file for my
needs. Here is what I have:

# Default action
default reject;

# Subnet declarations
for 10.20.0.0 netmask is 255.255.255.0;
for 192.168.0.0 netmask is 255.255.255.0;

# ICMP actions
between any and subnet 10.20.1.0 icmp type any accept;
between any and subnet 192.168.2.0 icmp type any
accept;

# Other actions
between subnet 192.168.2.0 and subnet 10.20.1.0
accept;

I am unable to ping from the two subnets stated above,
or more specifically, between these hosts:

192.168.2.8 <--> 10.20.1.2

I cannot figure out why. I turned on debugging and it
basically says that the packet is rejected (duh). I
believe my issue lies within my subnet
declarations...any ideas?

Thank you!

=====
Terry

__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - File online, calculators, forms, and more
http://tax.yahoo.com

• Next message: Irene A. Shilikhina: "Spamassassin & Perl version (on 4.0D)"
• Previous message: Paul LaMadeleine: "Problem upgrading from t64 5.1 to t64 5.1A"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:16 EDT