openSUSE Forums > Network/Internet » TFTP from another subnet

Go Back   openSUSE Forums > Network/Internet
Reload this Page TFTP from another subnet
Forums FAQ Members List Search Today's Posts Mark Forums Read


Network/Internet Questions about internet applications, network configuration, usage (SAMBA, network printing, NFS)

Reply
Page 2 of 2 1 2
 
LinkBack Thread Tools Display Modes
  #11 (permalink)  
Old 10-Sep-2008, 19:29
Puzzled Penguin
  
Join Date: Sep 2008
Posts: 23
sd_read hasn't been rated much yet
Default Re: TFTP from another subnet
Hi Ken;

I posted my previous post before I saw your most recent.

It would appear that your suspicions have been correct all along and I will follow your most recent advice and post on the Smoothwall forums.

Thank you for your help- Steve
Reply With Quote
  #12 (permalink)  
Old 10-Sep-2008, 19:34
Flux Capacitor Penguin
  
Join Date: Jun 2008
Location: GMT+10
Posts: 5,200
ken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud of
Default Re: TFTP from another subnet
You could insert an accept all port 69 packets (in both directions) into the pinhole table (no NEW, etc) and see if that works. Unfortunately you will have to use the iptables CLI command to do this.
Reply With Quote
  #13 (permalink)  
Old 10-Sep-2008, 20:09
Flux Capacitor Penguin
  
Join Date: Jun 2008
Location: GMT+10
Posts: 5,200
ken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud ofken_yap has a reputation to be proud of
Default Re: TFTP from another subnet
Ok, a bit of searching turned up this:

TFTP through IPCOP or other iptables firewalls « Keystone IT Tech

IPCop is derived from Smoothwall so it should be similar. I think the key module to load is the conntrack_tftp module, since NAT is not involved in going from green to orange DMZ.

Yes, a quick check of IPCop shows that the conntrack_tftp module does exist in netfilter, so you should load it, otherwise the firewall will not be able to let subsequent packets through after the NEW packet has been allowed through.
Reply With Quote
Reply
Page 2 of 2 1 2

Bookmarks


« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



Contact Us - openSUSE Forums - Archive - Privacy Statement - Top
© 2007 Novell, Inc. All Rights Reserved. This site uses the YAML CSS framework. All times are GMT -6. The time now is 00:54.
About openSUSE | Disclaimers | Feedback

Founded by Novell
 

Search Engine Friendly URLs by vBSEO 3.3.0 RC2