plug-gw module of TIS firewall toolkit

To: "TCLUG" <tclug-list@listserv.real-time.com>
Subject: plug-gw module of TIS firewall toolkit
From: "Scott K. Johnson" <sjohnson@skj.dsl.visi.com>
Date: Wed, 24 Mar 1999 22:34:45 -0600

Hello all,

I'm having some difficulty setting up the plug-gw module of the TIS
firewall toolkit.

What I would like to do, is be able to connect to my visi.com mail
server
to retrieve mail, from a box inside my LAN.

My /usr/local/etc/netperm-table section on plug-gw looks like this:

plug-gw: port 2009 192.168.1.* -plug-to mail.visi.com -port 110
plug-gw: port 2010 192.168.1.* -plug-to mail.visi.com -port 25

My /etc/services looks like this (for the two ports above...)

pop-gw 2009/tcp
mail-gw 2010/tcp

My /etc/inetd.conf looks like this (for the two ports/services
above...)

pop-gw stream tcp nowait root /usr/local/etc/plug-gw plug-gw
2009
mail-gw stream tcp nowait root /usr/local/etc/plug-gw plug-gw
2010

On the internal machine, I've got the mail program set to use my
firewall
machine as the incoming mail server, connecting to port 2009, and
likewise
for the outgoing mail server, connecting to port 2010.

When I connect to the firewall, from the internal box, I get the
following
in my /var/log/messages:

plug-gw[4658]: deny host peanut/192.168.1.2 service=2009

I've tried adding a "permit hosts" type of thing in the netperm-table,
but
it didn't seem to help (ie, plug-gw:  permit-hosts 192.168.1.*).

Anyone have any ideas, suggestions, pointers???

Thanks for your time!

Scott K. Johnson
skj@visi.com

Prev by Date: Re: [TCLUG:4954] make zImage
Next by Date: plug-gw module of the TIS Firewall Toolkit
Prev by thread: quick ext2 question
Next by thread: plug-gw module of the TIS Firewall Toolkit
Index(es):
- Date
- Thread