Fisrt apologize if an earlier email has been sent unfinished from me, it seems that my mailer has done something wrong :-(
Anyway, I'm looking how I could implement a forward rule in the shorewall conf file way of netfilter-ing.
I have a firewall, with only one public IP A that implement ipsec tunneling with a remote peer, having address B. This tunnel transport ip packets that are destined to another server with public ip address C. Both A and C public address are on the same subnet.
.
C is strongly secured and can only communicate with the shorewall server, and A is it's default gateway.
So the rules I need to implement on A is :
iptables -A FORWARD -s B -d C -j ACCEPT
iptables -A FORWARD -s C -d B -j ACCEPT
As I don't want to do DNAT, masquerade or portforwardinf but just forwarding, a deep search into the conf, doc and mailing lists doesn't help me on how to implement these simple rules in shorewall.
Do you have any idea?
Thanks,
Jean-Michel.
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
