External connections are not accepted

[richard-oss@…]

I have a clean install of Zentyal 2.3 and I can't get Zentyal to accept connections on the external interface. I want to enable SSH, HTTP, and HTTPS. I set up the definitions in Firewall -> Packet Filter -> External networks to Zentyal. The rules show up in iptables -L as the iexternal chain. But my packets are still being dropped. I see no obviously related error messages in zentyal/error.log or syslog.

My iexternal chain: Chain iexternal (1 references) target prot opt source destination RETURN all -- anywhere anywhere RETURN all -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:http state NEW ACCEPT udp -- anywhere anywhere udp dpt:https state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:https state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:ssh state NEW

What additional information would be helpful?

[richard-oss@…]

The formatting didn't work. I guess I should have previewed, but I thought I would be able to edit after saving. The spam filter doesn't like me fixing the formatting for reasons I don't understand; I guess I will have to repeat the entire issue description.

I have a clean install of Zentyal 2.3 and I can't get Zentyal to accept connections on the external interface. I want to enable SSH, HTTP, and HTTPS. I set up the definitions in Firewall -> Packet Filter -> External networks to Zentyal. The rules show up in iptables -L as the iexternal chain. But my packets are still being dropped. I see no obviously related error messages in zentyal/error.log or syslog.

Chain iexternal (1 references)
target     prot opt source               destination         
RETURN     all  --  anywhere             anywhere           
RETURN     all  --  anywhere             anywhere           
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http state NEW
ACCEPT     udp  --  anywhere             anywhere             udp dpt:https state NEW
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:https state NEW
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:ssh state NEW

What additional information would be helpful?

[richard-oss@…]

Zentyal works fine, this issue can be closed.

I blamed Zentyal for the symptom because I noticed it when I upgraded. But the actual cause was that my IP address had been re-assigned so the hostname was not hitting the correct box. Connections work fine when they are established with the correct box. I apologize for the bogus ticket.