TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

plug-gw module of TIS firewall toolkit

Hello all,

I'm having some difficulty setting up the plug-gw module of the TIS
firewall toolkit.

What I would like to do, is be able to connect to my mail
to retrieve mail, from a box inside my LAN.

My /usr/local/etc/netperm-table section on plug-gw looks like this:

plug-gw: port 2009 192.168.1.* -plug-to -port 110
plug-gw: port 2010 192.168.1.* -plug-to -port 25

My /etc/services looks like this (for the two ports above...)

pop-gw 2009/tcp
mail-gw 2010/tcp

My /etc/inetd.conf looks like this (for the two ports/services

pop-gw stream tcp nowait root /usr/local/etc/plug-gw plug-gw
mail-gw stream tcp nowait root /usr/local/etc/plug-gw plug-gw

On the internal machine, I've got the mail program set to use my
machine as the incoming mail server, connecting to port 2009, and
for the outgoing mail server, connecting to port 2010.

When I connect to the firewall, from the internal box, I get the
in my /var/log/messages:

plug-gw[4658]: deny host peanut/ service=2009

I've tried adding a "permit hosts" type of thing in the netperm-table,
it didn't seem to help (ie, plug-gw:  permit-hosts 192.168.1.*).

Anyone have any ideas, suggestions, pointers???

Thanks for your time!

Scott K. Johnson