On Wed, 17 Jul 2002, Webmaster - Mars Society wrote: > OK, I have 2 servers I want to connect to the net, through my Bering RC3 > firewall. I have been told that static IP's are assigned. > Let's call em 99.99.99.2 for the firewall and .3 and .4 for the servers. The > remote gateway is .1. I have added the servers to the proxy-arp file in > Shorewall. Their eth port on the firewall is 198.162.10.254 (eth2) > > How do I set the routing on the servers? Do I set the gateway to > 198.162.10.254, or to 99.99.99.1 ? I can't ping the servers from the > firewall. I can ping the server from the server. >
The following from the Shorewall Proxy ARP pages should give you all the clue you need: "The lower systems (130.252.100.18 and 130.252.100.19) should have their subnet mask and default gateway configured exactly the same way that the Firewall system's eth0 is configured." > Anything special on firewall rules for proxy-arp interfaces? They are in my > DMZ. I want to offer them some protection, as their functions will be > limited to DNS/HTTP and DNS/SMTP > You might want to look at my DMZ ruleset: http://www.shorewall.net/myfiles.htm. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
