Forwarding Syslog mesages from WAN to LAN

Home Page Forums Network Management ZeroShell Forwarding Syslog mesages from WAN to LAN

This topic contains 1 reply, has 0 voices, and was last updated by  jamessp1 8 years, 8 months ago.

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #42424

    jamessp1
    Member

    Hi,

    I am trying to forward Syslog messages from:

    2 ADSL modems (facing the internet on Eth00 and Eth01)
    to
    The LAN (Eth02).

    Here is the network diagram:

    http://img33.imageshack.us/img33/5905/zeroshell001.jpg

    I have switched on logging, and have set syslog to “Accept remote logs”.

    My firewall rules look like this:


    INPUT Rules
    1 ETH02 * ACCEPT all opt -- in ETH02 out * 0.0.0.0/0 -> 0.0.0.0/0 no
    2 * * ACCEPT all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED no


    FORWARD Rules
    1 ETH02 * ACCEPT all opt -- in ETH02 out * 0.0.0.0/0 -> 0.0.0.0/0 no
    2 * * ACCEPT all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED no
    3 ETH01 * ACCEPT tcp opt -- in ETH01 out * 0.0.0.0/0 -> 10.3.1.1 state NEW,RELATED,ESTABLISHED tcp dpt:80 yes
    4 ETH01 * ACCEPT icmp opt -- in ETH01 out * 0.0.0.0/0 -> 10.3.1.1 icmp type 8 no
    5 ETH00 * ACCEPT tcp opt -- in ETH00 out * 0.0.0.0/0 -> 10.3.1.1 state NEW,RELATED,ESTABLISHED tcp dpt:80 yes
    6 ETH00 * ACCEPT icmp opt -- in ETH00 out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 8 yes
    7 ETH00 * ACCEPT udp opt -- in ETH00 out * 0.0.0.0/0 -> 10.3.1.1 state NEW,RELATED,ESTABLISHED udp dpt:514 yes

    However, when I send Syslog messages (or even Pings) to Eth00, nothing appears in the Syslog. My question is:

    Can ZeroShell receive Syslog on WAN ports (in my case Eth00 and Eth01), and if so, what have I done wrong!

    Any ideas gratefully received. Thanks.

    #50370

    ppalias
    Member

    If your syslog server is ZS itself, then you should allow udp/514 on both ETH00 and ETH01 in the firewall.
    Forward chain means that packets travel through the router, while input chain means that packets are destined to router.

    #50371

    jamessp1
    Member

    Thanks again ppalias,

    I’ll sort out the input and try again. You are right, forwarding is wrong. I’ll post my results.

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.