jwan
04-07-2005, 01:31 AM
Hi all, I am planning to get my personal webserver up and running through my new DSL subscription. I got a dynamic IP and my provider provided me a Speedtouch 511e dsl modem. I tried putting NATP forward of:
Inside IP: 10.0.0.1
Outside IP: 0.0.0.0 helpfile say use this for dyIP
inside port: 80
outside port: 80
But when my friends tried, they can't get in. I am sure my webserver is working coz my friends can get in if I use dial up.
After searching the web, i learned something in my setup:
[firewall rule]=>:firewall rule list
:firewall rule create chain=source index=0 dstintfgrp=!wan action=accept
:firewall rule create chain=source index=1 prot=udp dstport=dns action=accept
:firewall rule create chain=source index=2 prot=udp dstport=bootps action=accept
:firewall rule create chain=source index=3 prot=icmp icmptype=echo-request action=accept
:firewall rule create chain=source index=4 prot=udp srcport=snmp log=yes action=count
:firewall rule create chain=source index=5 action=drop
:firewall rule create chain=forward index=0 srcintfgrp=wan dstintfgrp=wan action=drop
:firewall rule create chain=sink index=0 srcintfgrp=!wan action=accept
:firewall rule create chain=sink index=1 prot=udp dstport=dns action=accept
:firewall rule create chain=sink index=2 prot=udp dstport=bootpc action=accept
:firewall rule create chain=sink index=3 prot=icmp icmptype=echo-reply action=accept
:firewall rule create chain=sink index=4 prot=udp dstport=snmp log=yes action=count
:firewall rule create chain=sink index=5 action=drop
Can somebody help???
jwan
Inside IP: 10.0.0.1
Outside IP: 0.0.0.0 helpfile say use this for dyIP
inside port: 80
outside port: 80
But when my friends tried, they can't get in. I am sure my webserver is working coz my friends can get in if I use dial up.
After searching the web, i learned something in my setup:
[firewall rule]=>:firewall rule list
:firewall rule create chain=source index=0 dstintfgrp=!wan action=accept
:firewall rule create chain=source index=1 prot=udp dstport=dns action=accept
:firewall rule create chain=source index=2 prot=udp dstport=bootps action=accept
:firewall rule create chain=source index=3 prot=icmp icmptype=echo-request action=accept
:firewall rule create chain=source index=4 prot=udp srcport=snmp log=yes action=count
:firewall rule create chain=source index=5 action=drop
:firewall rule create chain=forward index=0 srcintfgrp=wan dstintfgrp=wan action=drop
:firewall rule create chain=sink index=0 srcintfgrp=!wan action=accept
:firewall rule create chain=sink index=1 prot=udp dstport=dns action=accept
:firewall rule create chain=sink index=2 prot=udp dstport=bootpc action=accept
:firewall rule create chain=sink index=3 prot=icmp icmptype=echo-reply action=accept
:firewall rule create chain=sink index=4 prot=udp dstport=snmp log=yes action=count
:firewall rule create chain=sink index=5 action=drop
Can somebody help???
jwan