[leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Troy Aden
My set up is as follows: Internet eth0 -192.139.*.* - ISP's DNS resolves to http://eros.myisp.com Eth0 eth1 =(LOC zone)- 192.168.1.26 LOC windows box Eth0 --- eth2 =(DMZ zone)- 192.168.2.26 DMZ Linux server I have my rule set set up so that my loc zone can connect to my DMZ. Now for

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Tom Eastep
--On Tuesday, February 25, 2003 12:11:12 PM -0600 Troy Aden [EMAIL PROTECTED] wrote: My set up is as follows: Internet eth0 -192.139.*.* - ISP's DNS resolves to http://eros.myisp.com Eth0 eth1 =(LOC zone)- 192.168.1.26 LOC windows box Eth0 --- eth2 =(DMZ zone)- 192.168.2.26 DMZ

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Brad Fritz
Troy, On Tue, 25 Feb 2003 12:11:12 CST Troy Aden wrote: My set up is as follows: Internet eth0 -192.139.*.* - ISP's DNS resolves to http://eros.myisp.com Eth0 eth1 =(LOC zone)- 192.168.1.26 LOC windows box Eth0 --- eth2 =(DMZ zone)- 192.168.2.26 DMZ Linux server I have my

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Ray Olszewski
At 12:11 PM 2/25/2003 -0600, Troy Aden wrote: My set up is as follows: Internet eth0 -192.139.*.* - ISP's DNS resolves to http://eros.myisp.com Eth0 eth1 =(LOC zone)- 192.168.1.26 LOC windows box Eth0 --- eth2 =(DMZ zone)- 192.168.2.26 DMZ Linux server I have my rule set set up so that

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Tom Eastep
--On Tuesday, February 25, 2003 01:45:58 PM -0500 Brad Fritz [EMAIL PROTECTED] wrote: The recommended approach, e.g. per Shorewall FAQ #2 [1], is to setup a DNS server that answers requests from the LAN and is (locally) authoritative for the domain eros.myisp.com . Brad -- that is my

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Tom Eastep
--On Tuesday, February 25, 2003 10:56:32 AM -0800 Tom Eastep [EMAIL PROTECTED] wrote: Brad -- that is my recommendation for a local server. For a server in the DMZ, it is a lot easier to just construct a second DNAT rule as described in the three-interface QuickStart guide. Although I suppose

RE: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Troy Aden
:Re: [leaf-user] DMZ question Bering 1.1 At 12:11 PM 2/25/2003 -0600, Troy Aden wrote: My set up is as follows: Internet eth0 -192.139.*.* - ISP's DNS resolves to http://eros.myisp.com Eth0 eth1 =(LOC zone)- 192.168.1.26 LOC windows box Eth0 --- eth2 =(DMZ zone)- 192.168.2.26 DMZ Linux

RE: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Tom Eastep
--On Tuesday, February 25, 2003 01:09:30 PM -0600 Troy Aden [EMAIL PROTECTED] wrote: I am sorry. I was unclear. The real address is http://eros.vcomrf.com You will get a password prompt. Then the procedure described in the three-interface guide DOES apply here. -Tom -- Tom

Re: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Brad Fritz
Tom, On Tue, 25 Feb 2003 11:06:23 PST Tom wrote: --On Tuesday, February 25, 2003 10:56:32 AM -0800 Tom Eastep [EMAIL PROTECTED] wrote: Brad -- that is my recommendation for a local server. For a server in the DMZ, it is a lot easier to just construct a second DNAT rule as described

RE: [leaf-user] DMZ question Bering 1.1

2003-02-25 Thread Bihari, Steve
in my host file \winnt\system32\drivers\etc\hosts on Nt,2K and XP. Or I believe \windows on Win9x. Your entry would look like this: 192.168.2.26 eros.myisp.com ...Steve -Original Message- From: Troy Aden To: Leaf-User (E-mail) Sent: 2/25/03 1:11 PM Subject: [leaf-user] DMZ question