 HylaFAX The world's
most advanced open source fax server
|
[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]
[hylafax-users] Hylafax in DMZ
- To: Hylafax Mailing List <hylafax-users@xxxxxxxxxxx>
- Subject: [hylafax-users] Hylafax in DMZ
- From: Jan Hugo Prins <jhp@xxxxxxxxxxx>
- Date: Mon, 15 Aug 2005 23:58:49 +0200
Hi, I have my Hylafax server running within the DMZ of my network and systems in that DMZ are not able to connect into the private lan. When I try to send a fax from my private lan through the Hylafax server the client is not able to connect because the hfaxd tries to make a direct connection to the client instead of using the connection that was made by the client. I see the same problem when I do a faxstat from the client: On the client I see the following error: [jhp@zeus jhp]$ faxstat -h hercules -v Trying hercules (10.0.0.1) at port 4559... Connected to hercules.jhprins.org. 220 hercules server (HylaFAX (tm) Version 4.2.1) ready. -> USER jhp 230 User jhp logged in. -> PORT 192,168,1,5,143,9 200 PORT command successful. -> LIST status 425 Cannot build data connection: Connection timed out. In the logfiles of the firewall between the DMZ and the private lan I see the following errors: Aug 16 00:02:13 cerberus kernel: RULE 16 -- DENY IN=eth0 OUT=br0 PHYSOUT=eth1 SRC=10.0.0.1 DST=192.168.1.5 LEN=60 TOS=0x08 PREC=0x00 TTL=62 ID=41767 DF PROTO=TCP SPT=4558 DPT=36617 WINDOW=5840 RES=0x00 SYN URGP=0 Aug 16 00:03:01 cerberus kernel: RULE 16 -- DENY IN=eth0 OUT=br0 PHYSOUT=eth1 SRC=10.0.0.1 DST=192.168.1.5 LEN=60 TOS=0x08 PREC=0x00 TTL=63 ID=41768 DF PROTO=TCP SPT=4558 DPT=36617 WINDOW=5840 RES=0x00 SYN URGP=0 Any other deamon that is running in the DMZ uses the connection that is build by the client and can connect back throught the firewall that way. But because the hfaxd is trying to make a connection by itself it fails. Is there something in the configuration file that I can change so I don't have to open up my firewall for the hfaxd? Greetings, J.H. Prins ____________________ HylaFAX(tm) Users Mailing List _______________________ To subscribe/unsubscribe, click http://lists.hylafax.org/cgi-bin/lsg2.cgi On UNIX: mail -s unsubscribe hylafax-users-request@xxxxxxxxxxx < /dev/null *To learn about commercial HylaFAX(tm) support, mail sales@xxxxxxxxx*
- Follow-Ups:
- Re: [hylafax-users] Hylafax in DMZ
- From: marthter
- Re: [hylafax-users] Hylafax in DMZ
- Prev by Date: Re: [hylafax-users] Fax Users/Sending Faxes...
- Next by Date: Re: [hylafax-users] /dev/ttyG* permissions and ownerships
- Previous by thread: Re: [hylafax-users] Archive directory file control
- Next by thread: Re: [hylafax-users] Hylafax in DMZ
- Index(es):
Project hosted by iFAX Solutions