|
OpenBSD Security Functionally paranoid! |
|
Thread Tools | Display Modes |
|
|||
I can't use a rdr rules as solution because I don't know specific ports need to be open; so, I decided to use an external program (upnpd) and set in its conf that upnp was abilited only for 192.168.1.0/24 subnet. That resolved my problem, but I know it isn't an elegant solution. I can't do better :/
Thanks at all for helpin' me :°)
__________________
"Non ex regula ius sumatur, sed ex iure quod est regula fiat." |
|
||||
Sorry, we coulldn't be more help.
Cheap NAT routers have the ability to "DMZ" a single IP address on the private LAN; because the port numbers are not needed in that situation. Every incoming TCP or UDP packet that is not in the state table is simply redirected to that single IP address. In your situation, you have a DMZ subnet. So you would need to know your ports or port ranges, to direct traffic to the appropriate device on that subnet. |
|
||||
Short of obtaining multiple IP addresses, that is the best you can do. NAT can work with outgoing connections, but there are no good solutions for incoming connections. Oh, and thanks - I didn't know that we had a upnp solution available. Lucky that the applications you needed were upnp-enabled.
__________________
The only dumb question is a question not asked. The only dumb answer is an answer not given. |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
K3b cannot find growisofs | maxrussell | FreeBSD General | 5 | 26th April 2009 12:20 PM |
hahaha noob mistake, file called -z... | michaelrmgreen | FreeBSD General | 8 | 9th December 2008 12:12 AM |
pkg inside non-global zone? | nacredata | Solaris | 2 | 30th September 2008 11:50 PM |
pkg_add g95;g95 x.f95: cannot find g95 | enpey | OpenBSD Packages and Ports | 8 | 27th August 2008 12:48 AM |
Zone problem | c0mrade | General software and network | 3 | 22nd June 2008 03:31 PM |