--- Jerry Vonau <[EMAIL PROTECTED]> wrote:
> > # cat /etc/shorewall/hosts
> > #ZONE HOST(S)
> > OPTIONS
> > loc br0:10.215.144.0/22!10.215.144.92
> > routeback
> 10.215.237.251 and 10.215.5.95 outside of your
> loc zone.
> Did you want a /16 here? Your treating the whole /16
> as loc right?
I understand Jerry.
Actually, the loc zone should just be 10.215.144.0/22.
The rest of the 10.215.0.0 are in remote subnets that
can be reached through 10.215.144.6 which is within
loc.
However, since I defined 10.215.144.0/22 for the loc
zone then anything outside of it is considered net and
the policy is DROP.
As far as shorewall is concerned, the remote
10.215.0.0 should be within loc as well. That was my
mistake.
Thank you for pointing it out.
____________________________________________________________________________________
Moody friends. Drama queens. Your life? Nope! - their life, your story. Play
Sims Stories at Yahoo! Games.
http://sims.yahoo.com/
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
