Hi again, But the Bering box is in LOC zone too, the Bering box is a DNS for all locals... (yes, internal addresses of Bering), will the DNS work in this case?
Dmitri. ----- Original Message ----- From: "Tom Eastep" <[EMAIL PROTECTED]> To: "Dmitri Gofmekler" <[EMAIL PROTECTED]> Cc: "Leaf User List" <[EMAIL PROTECTED]> Sent: Monday, June 30, 2003 11:13 PM Subject: Re: [leaf-user] How to close multiple MASQed interfaces from eachother? > On Mon, 2003-06-30 at 12:59, Dmitri Gofmekler wrote: > > Hi! > > > > I;m looking for shorter way to desallow traffic between multiple internal > > MASQed, RFC1918 interfaces than write the rules for each possible pair. I > > have a 25 VLAN interfaces and write the 24 rules for each interface - it is > > too much I think. Is there a simpler way? > > If you are using Bering, just add the following Policy (assuming that > all 25 interfaces are in the 'loc' zone): > > loc loc REJECT > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > Shoreline, \ http://www.shorewall.net > Washington USA \ [EMAIL PROTECTED] > ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
