Troy, On Tue, 25 Feb 2003 12:11:12 CST Troy Aden wrote:
> My set up is as follows: > > Internet ----> eth0 -192.139.*.* - ISP's DNS resolves to > http://eros.myisp.com > Eth0 ----> eth1 =(LOC zone)- 192.168.1.26 LOC windows box > Eth0 ---> eth2 =(DMZ zone)- 192.168.2.26 DMZ Linux server > > I have my rule set set up so that my loc zone can connect to my DMZ. > Now for my question: > Is there a way I can set this up so that I can connect from my loc zone > windows client > to my web server in my DMZ with http://eros.myisp.com > <http://eros.myisp.com> as opposed to having to connect > to it with http://192.168.2.26 <http://192.168.2.26> ? > Am I missing something in my configuration? Or is this the way things should > be? The recommended approach, e.g. per Shorewall FAQ #2 [1], is to setup a DNS server that answers requests from the LAN and is (locally) authoritative for the domain eros.myisp.com . You can use Bind "views" as stated in the Shorewall FAQ, or you can setup tinydns behind dnscache on your firewall to answer for eros.myisp.com name lookups. If you want to do it with dnscache and tinydns on Bering, the info and links at: http://marc.theaimsgroup.com/?l=leaf-user&m=104336907923969 should get you started. Let us know if you have specific questions or problems after checking out the Shorewall FAQ and the information in that posting. HTH, Brad [1] http://shorewall.net/FAQ.htm#faq2 ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
