SuSEfirewall Script and Forwarding

Hi All,

Just when I thought I had the openSUSE firewall script tamed I run
into a challenge. I have forwarding work for a single port but I
can't get it to work for additional ports. What I have setup is a two
interface firewall with two IP address bound to the external interface
and two computers behind the internal interface (172.16.5.127 and
128)

FW_FORWARD="0/0,172.16.5.128 172.16.5.128,0/0 0/0,172.16.5.127
172.16.5.127,0/0"

This works to forward remote desktop connections:

FW_FORWARD_MASQ="0/0,172.16.5.128,tcp,3389 0/0,172.16.5.127,tcp,3389"

When I modify the above line by replacing 3389 with 80 or 443 the
connection to both computers will work on that port.

What I really want it to forward HTTP, HTTPS AND RDP.

What is the correct syntax to make this work? I have tried both lines
below with no progress.

FW_FORWARD_MASQ="0/0,172.16.5.128,tcp,3389 0/0,172.16.5.128,tcp,80
0/0,172.16.5.128,tcp,443 0/0,172.16.5.127,tcp,3389
0/0,172.16.5.127,tcp,80 0/0,172.16.6.127,tcp,443"

FW_FORWARD_MASQ="0/0,172.16.5.128,tcp,80,443,3389 0/0,172.16.5.127,tcp,
80,443,3389"

Thanks in advance

mostro,

It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.

Has your problem been resolved? If not, you might try one of the following options:

- Do a search of our SDB at http://en.opensuse.org/SDB:SDB
- Check all of the other information and support options available at
http://www.opensuse.org/
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://support.novell.com/forums)

Be sure to read the forum FAQ about what to expect in the way of responses:
http://support.novell.com/forums/faq_general.html

If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.

Good luck!

Your Novell Product Support Forums Team
http://support.novell.com/forums/