Hello all
I am using two Draytek routers that open and sustain an encrypted VPN
connection between two lans (via the internet). Behind EACH of the
routers is a Linux machine that runs Shorewall (2.0.2). Each of the
machines is equiped with two network interfaces: eth0 connects the
machine to
Panos Katergiathis wrote:
I am using two Draytek routers that open and sustain an encrypted VPN
connection between two lans (via the internet). Behind EACH of the
routers is a Linux machine that runs Shorewall (2.0.2). Each of the
machines is equiped with two network interfaces: eth0 connects the
Hi,
maybe there is something wrong with my tree interface configuration.
I followed http://www.shorewall.net/three-interface.htm, Figure 3 DMZ.
I can access from the DMZ and the loc the firewall/router but can't
access FROM the firewall/router those machines with a https
connection.
A
Hi,
i've a bering uclinux distrib with shorewall v 3.2.x
I don't find any doc about shorewall and vlan :( Is it possible to work
with both ?
Is anyone can help me (examples, docs) about this ?
Regards
Franck
# /etc/network/interfaces
-
auto eth1
iface eth1 inet static
Hi Franck,
from a shorewall point of view, simply treat VLANs as normal
interfaces !
No difference, since VLAN are handled by the network layer of the
kernel, and shorewall is not aware of this.
Si tu veux plus d'infos en FR-fr, droppe-moi un email ;-)
Le vendredi 15 juin 2007 à 14:43 +0200,
Franck wrote:
I don't find any doc about shorewall and vlan :( Is it possible to work
with both ?
Yes, try searching the list archives.
Is anyone can help me (examples, docs) about this ?
I set a couple of (Debian) machines up not long ago - gateways for
multi-tenancy business units. Key
mess-mate wrote:
Hi,
maybe there is something wrong with my tree interface configuration.
I followed http://www.shorewall.net/three-interface.htm, Figure 3 DMZ.
I can access from the DMZ and the loc the firewall/router but can't
access FROM the firewall/router those machines with a https
Thanks for the help you provided.
Though, i am a bit unclear on what you mean about the not needed NAT
functionality: the Drayteks act as modems, providing internet
connectivity - the NATing takes place on the Shorewall machines, thus
allowing the users of the internal networks to have access
I think he's trying to run a routing machine in a domU, much like I am
currently (successfully!) doing, doing proxyarp between eth0 and another
interface (in my case, tun0).
The answer to your question is Yes - for all intents and purposes the Xen
bridge should behave just like a real, physical
Lars E. D. Jensen wrote:
Hello list
I'm considering moving shorewall to a xen domu and the using the Proxy ARP
method (we use NAT today).
Is it possible to have a Proxy ARP firewall inside a domu serving requests
to other domus with public IP-addresses placed on separate hardware (not the
Please, if anyone sees something wrong with my advice, don't be shy
of saying so !
Panos Katergiathis wrote:
Thanks for the help you provided.
Though, i am a bit unclear on what you mean about the not needed NAT
functionality: the Drayteks act as modems, providing internet
connectivity - the
Mark wrote:
Greetings,
I have a Shorewall configuration with 2 WAN subnets bound to eth0 and eth1
and 2 LAN interfaces bound to eth2 and eth3. We have a web/e-mail server on
eth3 in the 192.168.30.0/24 subnet at 192.168.30.10. I have 2 rules to DNAT
TCP traffic on ports 80 and 110 arriving
That was it! Thank you for your help Jerry.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jerry
Vonau
Sent: Friday, June 15, 2007 4:00 PM
To: Shorewall Users
Subject: Re: [Shorewall-users] DNAT problem with MultiISP
Mark wrote:
Greetings,
I have a
13 matches
Mail list logo