Hi Jim, This sounds exactly like what I do - I have a wireless access point connected via a cross-over cable to a separate NIC on the Bering-uClibc box. In fact I have 4 NICs - Internet (WAN) connection, Internal (LAN) connection, a DMZ and also the wireless LAN connection. I don't mind so much if somebody gets onto my wireless LAN and connects to the Internet, but I'd rather keep them off my wired LAN.
Basically you need to add another Interface, another Shorewall Zone and then define Rules and Policies like you get by default for the "loc" Zone. You'll also need an entry in /etc/shorewall/masq to NAT the wireless traffic out to the Internet. I've set things up so the wireless connection is more like the "loc" zone than "dmz". davidMbrooke >I'd like to use an access point I have with my Bering >uClibc box. I >guess that because of security issues with wireless >networking, what I >need to do is to hang it off another ethernet card, with >the network >configured as a DMZ. Tom Eastep describes a 3 card setup, >but does >anyone know of other howtos that might help, please? Also, >any 'gotchas' >spring to mind? > >Jim Ford > >------------------------------------------------------------------------- >Using Tomcat but need to do more? Need to support web >services, security? >Get stuff done quickly with pre-integrated technology to >make your job easier >Download IBM WebSphere Application Server v.1.0.1 based on >Apache Geronimo >http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 >------------------------------------------------------------------------ >leaf-user mailing list: leaf-user@lists.sourceforge.net >https://lists.sourceforge.net/lists/listinfo/leaf-user >Support Request -- http://leaf-project.org/ ----------------------------------------- Email sent from www.ntlworld.com Virus-checked using McAfee(R) Software Visit www.ntlworld.com/security for more information ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
