Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > Netgear Router KWGR614 and firewalling

Reply
Thread Tools Display Modes

Netgear Router KWGR614 and firewalling

 
 
Gerhard W. Gruber
Guest
Posts: n/a

 
      03-03-2007, 11:19 AM
Hi,

I purchased the KWGR614 Netgear router a few days ago and tried to set it up
as a firewall. Since this router uses Linux as it's firmware, I thought this
would be a big advantage because the source is available and can be downloaded
for modification.

Now I have some issues with the current firmware and I wonder wether anybody
has already experiences with this router.

I have configured port forwarding to point to my server which is running
Ubuntu 6.10 with apache2, SVN and some other services.

This is part of the configfile where the portforwarding is setup:

forward_port0=80-80>192.168.1.200:80-80,both,off,HTTP
forward_port1=443-443>192.168.1.200:443-443,both,off,HTTPS
forward_port2=20-21>192.168.1.200:20-21,tcp,off,FTP(T20~21)
forward_port3=22-22>192.168.1.200:22-22,both,off,SSH
forward_port4=6881-6881>192.168.1.200:6881-6881,both,off,Torrent
forward_port5=6969-6969>192.168.1.200:6969-6969,both,on,Tracker

The problem is that I can access apache via the local network, but not from
the outside. This seems definitely to be a router problem, because I now
sitched on the option that the server should be exposed as DMZ and now it
works. When I switch that option off it is not reachable and I get this
errormessage in the router log:

Saturday,03 Mar 2007 02:12:45 [Ingress ACL Drop][Deny access policy matched,
dropping packet]
Saturday,03 Mar 2007 02:12:48 [Ingress ACL Drop][Deny access policy matched,
dropping packet]

The router uses iptables, but there is no way of configuring it more directly,
so I wonder wether this is a bug in the firmware. I haven't found any forum
that is related to this router, so I posted this here since it is running
Linux after all, in the hope that somebody can help me.

Also I wonder if there might be some alternate firmware that allows me to
upload an iptable script directly, because the current configuration options
only use a very small subset of what it can do. I would like to create the
firewall configuration with firewallbuilder, since it can export such scripts
and it looks quite good to me.
 
Reply With Quote
 
 
 
Reply

« Maybe OT: How to be a net-masochist | mount using cifs to get ACL info »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
MultiNAT firewalling Linker3000 Broadband 4 10-24-2006 09:08 PM
OT: dialup firewalling / freeserve Colin Wilson Broadband 2 08-27-2004 10:09 PM
Firewalling? Richard Cavell Linux Networking 2 08-24-2004 03:00 AM
Problems Bridging/Firewalling.. CHARLES THOLEN Linux Networking 2 01-18-2004 06:05 AM
Appropriate Firewalling M2@M Linux Networking 1 01-11-2004 05:05 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11