Re: All ports blocked

[Mysterious]

On 11/16/2009 10:55 PM, Viegas wrote:
> Hi
>
> A new Netware 6.5.8 server with BM 3.9, with all necessary filters
> exceptions.
> If the filters are up all ports stay blocked no matter all the filters
> exceptios I have.
> To test it, I make a few more filters with port 80 open and 1677 for GW
> for all interfaces and for all address and is not possible to access to
> Internet pages or GW from Internet.
>
> Thanks for any help.
>
> Regards
> Viegas

1. check in filtcfg that your interfaces are correctly marked as public
and private.
2. Check that ds healthy and filtsrv can read the filters from edir. If
filtsrv can not read them, it will block everything by default
3. If you're having ds issues, move the filters out of edir and use
filters.cfg. You can do that usign the /nonds swithc.
But then imanager will not longer work when setting filters and you'll
have to use filtcfg:

1. On the system console, set the following
parameter:
set FILTSRV nonds=ON
2. Run the following command to unload
filtsrv.nlm:
unload filtsrv.nlm
3. Run the following command to load
filtsrv.nlm:
load filtsrv.nlm

[Craig Johnson]

In article <4B01CA5D.A...@myrealbox.com>, Viegas wrote:
> To test it, I make a few more filters with port 80 open and 1677 for GW for all interfaces and for
all address and is not possible to access to Internet pages or GW from Internet.
>

Is dynamic NAT enabled? Static NAT? If static NAT, do you have a secondary public IP address
present for the NAT'd connection?

Are your filters set up in the correct direction? (See tip #13 at the URL below).

Craig Johnson
Novell Support Connection SysOp
*** For a current patch list, tips, handy files and books on
BorderManager, go to http://www.craigjconsulting.com ***