Hi Jason, What you need to setup is a MASQ rule (NAT rule). This will allow you to send stuff out the public address and receive stuff from it as well. I usually set eth0 as LAN and eth1 as WAN but it should not make a difference. Just click on the help section (in the MASQ screen) if you are unsure how to setup the MASQ rule.
HTH Patrick -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jason Allen Sent: Thursday, October 14, 2004 4:48 PM To: [EMAIL PROTECTED] Cc: Florin Subject: [Security Firewall] MNF 2 Beta Setup Hardware Ok guys hope you can help with this one it's been cramping my brain all evening... I'm trying to test out the MNF2 beta. I've got a box w/ 2 NIC's that I want to use. Installation went just fine, can get to the web interface and everything. Now here's my question: How do I get the bridging to work properly (and do I NEED to use it)? I'm assuming I need to use the bridging, One NIC to the switch to the gateway (wan) which would be eth0, other NIC to the switch for the Lan, which would be eth1. Eth0 is configured via dhcp, and eth1 gets set to static automatically. Now here's the issue: I get eth0 all set up, can get to the web interface and configure rules and such.. but how do I make it so the lan can get out? If I go to the network section, and bridging and turn bridging on... and then enable bridging, it shows me both interfaces (eth0 and eth1) and which ones are configured for bridging. It only shows eth0 configured for bridging (shows "yes"), eth1 is blank. Do I have to give eth1 a static address, and THEN do the bridging? Now as soon as I enable bridging, I can't connect to the web interface anymore via the ip address is previously had, nor can I ping it at all, and I can't even ping another address from the box itself even with shorewall off. Basically I'm assuming I need the bridge so both NICS act as 1 NIC and lets traffic go both ways. How can I accomplish this so that I can actually configure the rest of the firewall to test it out?? Thanks in advance! Jason -- Jason Allen Cornell University BRC Computing Facility 157 Biotechnology Bldg. CU Ithaca, NY 14853 (607) 227-6559 http://www.brc.cornell.edu
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
