Please send these sorts of questions to the leaf-user list...see my support page: http://lrp.steinkuehler.net/Support.htm
> I am looking to set up a DMZ with public IP addresses, but am struggling to > find out how to set it up. I read this on LRP, > > > routed DMZ - The DMZ consists of a subnet of public IP's behind a router. > > The router/firewall has a public IP OUTSIDE of the DMZ subnet range. Your > > ISP must route packets to your DMZ IP space to your firewall, and > advertise > > your IP range to the backbone. All IP services/protocols are supported. > > This is my setup, but I dont know how to configure it to get it to work ?? There are inline comments in the Dachstein network.conf file, and some helpful information in my (now somewhat dated) documentation of network.conf: http://lrp.steinkuehler.net/files/packages/network.txt Basically, you need to set DMZ_SWITCH=YES, and appropriate entries for DMZ_IF and DMZ_NET. You can control access to machines on the DMZ with the following variables: DMZ_HIGH_TCP_CONNECT DMZ_CLOSED_DEST DMZ_OPEN_DEST If you need more sophisticated rules, you can add custom ipchains commands to /etc/ipchains.forward, and they will be included by the firewall scripts. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
