[Firehol-support] Linksys Printserver Configuration
Costa Tsaousis
costa at tsaousis.gr
Sun Oct 9 10:40:10 CEST 2005
Tim Whitehouse wrote:
> I'm trying to print from a Linux host with Firehol to a Linksys print
> server (model ??) which has a static IP on the local network. A host
> that is printing and the print server communicate on two different
> ports, 515 and one that changes for each communication session. It
> works when I set "policy accept" but I don't want to leave it that
> way. It seems that the easiest way would be to allow all
> communication for the print server IP.
>
> I've tried with no luck to have a separate eth0 interface with the
> following definition:
>
> interface eth0 internet
> policy reject
> protection strong
> server "ssh http icmp postgres netbios_dgm netbios_ns
> netbios_ssn cups ping sam
> ba https lpd" accept
> server ident reject with tcp-reset
> client all accept
>
> interface eth0 prtsrvr src "192.168.1.107/32"
> server all accept
> client all accept
> policy reject
>
> 192.168.1.107 is the print server's IP.
>
> How can I do this?
>
Put the interface prtsrv above internet. The internet interface is a
superset of prtsrv, it gets all traffic and drops everything not matched
by its end.
Costa
More information about the Firehol-support
mailing list