It is currently Sun, 19 Nov 2017 08:15:20 GMT



 
Author Message
 Firewalling and getting "no data" responses

Howdy all,

We have just started to get our firewall put together.

What we want is for nobody outside to be able to get to our internal
network, and for everyone inside to be able to get out.  When we have
this set up and have run sopme security checks, we shall make it serious.

Here is the problem - now that my firewall is set up, nobody on the
inside can get to the outside.  Netscape tells them "the document
contains no data." for pages on outside hosts  Many details follow.

I have recompiled the kernel to use firewalling.  I have chosen socks as
the firewall daemon.  Our internal netowrk is 192.168.2.*, and the
server/firewall is 205.230.201.17.  We own 205.230.201.16-32, making the
netmask end in .240.

sockd.conf looks like
permit 192.168.2.0  255.255.255.0
permit 205.230.201.16  255.255.255.240
deny   0.0.0.0    0.0.0.0

so anything internal and anything from the internal network is freely
tramittable, but nothing from the outside can get to the inside, and out
internal packets are filtered out of the outgoing data stream.

socks.conf looks like
direct 192.168.2.0  255.255.255.0
deny   192.168.2.0  0.0.0.0
sockd  @=dns 0.0.0.0 0.0.0.0
domain eviews.com.
nameserver dns

local machines have a driect connection, and our socks server,
dns.eviews.com, will cvalidate everything else.

and sockd.route looks like
192.168.2.150   192.168.2.0     255.255.255.0
205.230.201.18  0.0.0.0         0.0.0.0

The ethernet card at 192.168.2.150 will get all local network traffic,
and everything else goes via the ethernet card at 205.230.201.18.

Now, on a machine on the inside network, I have netscape set up.  I told
it we are using firewalling, and that the socks server is at
socks.eviews.com, port 1080.  (socks and dns are the same machine, at
192.168.2.150)

I told it that ftp and http are to be handled by socks.eviews.com, also
at port 1080.

Whenever I try to make a connection to the outside, it looks up the name,
then tells me "Document contains no data".

I have read the firewalling-HOWTO and the various socks man pages.  Also,
the book "How to set up a perfect internet site with Linux."

I can use ftp from the shell prompt on the linux machine to these outside
places, so I am porbably just not understanding how to configure this.  I
post in the linux group, rather than the netscape groups, as I know less
about linux, and so am more likely to have screwed it up.

Scott

--
_____________________________________________________________________________
Scott Ellsworth                    q...@netcom.com
My opinions are my own             EViews ftp: ftp.netcom.com:/pub/qm/qms
                                   Quantitative Micro Software - 714 856 3368
"The barbarian is thwarted at the moat" - Scott Adams



 Tue, 29 Dec 1998 03:00:00 GMT   
 Firewalling and getting "no data" responses

Sorry, all.  I forgot a few useful pieces of information:

Kernel 2.0.1, using the RedHat 3.0.3 sources with all updates

IP_FORWARDING is turned off.
IP_MASQ is turned off, as that is what socks will take care of.

Using socks-4.2BETA.

On the win95 box, in TCP/IP config, I have only onegateway, 192.0.2.1,
which was supposed to be a localhost, I suspect.  I will try things with
that set to a more reasonable value, like 192.168.2.150, our socks-based
gateway machine.

The router, which would in general be the gateway, is at 205.230.201.17.  
I do not need this to be the overall gateway for the Windows machines,
because IP_FORWARDING is turned off.  In order for the packets to reach
the outside world, I need to use 192.168.2.150, the socks server as the
gateway.

Just to remind, in Netscape, I set the socks server to 192.168.2.150,
port 1080, and set the ftp and http servers to the same values.  Socks is
then responsile for routing them to the rest of the world.  Did I do that
correctly?

Scott

--
_____________________________________________________________________________
Scott Ellsworth                    q...@netcom.com
My opinions are my own             EViews ftp: ftp.netcom.com:/pub/qm/qms
                                   Quantitative Micro Software - 714 856 3368
"The barbarian is thwarted at the moat" - Scott Adams



 Tue, 29 Dec 1998 03:00:00 GMT   
 Firewalling and getting "no data" responses

Just discovered entries in /var/log/messages.  Whenever I try to connect
to a page, such as www.yahoo.com, I get a "Message contains no data"
message from Netscape, and an antry in the messages file containing

Jul 12 14:59:16 merlin sockd[8815]: error - wrong version(0x47) from host
gwydno.eviews.com

The names match, gwydno is the name of the windows box, and merlin is the
server.  I see nothing in the man pages or the docs I have on just what
this means, and what I need to do fo fix it.

Scott

--
_____________________________________________________________________________
Scott Ellsworth                    q...@netcom.com
My opinions are my own             EViews ftp: ftp.netcom.com:/pub/qm/qms
                                   Quantitative Micro Software - 714 856 3368
"The barbarian is thwarted at the moat" - Scott Adams



 Tue, 29 Dec 1998 03:00:00 GMT   
 
   [ 3 post ] 

Similar Threads

1. "Source Route Failed", "LOGIN FAIL..", "Malformed response", and "Lame server" messages in /var/log

2. GETSERVBYNAME()????????????????????"""""""""""""

3. "locate" has no response

4. Lilo hanging at "LI" - response

5. Question about "expires" in http response

6. pppd with no modem "CONNECT" response

7. Order of response file to "checkinstall"

8. Responses to "m4 questions"

9. "NO RESPONSE WITHIN TIMEOUT PERIOD" problem


 
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software