Hello List members,
1. Shorewall , v 3.2 is working fine
2. I seem to have misunderstood the functionality of
the maclist file though. I wanted to use mac addresses
of machines to restrict access from zone1 to zone 2.
Help would be appreciated .
3. My config is as follows;
eth0->adsl router
eth1 ->lan
eth2 ->mz ( for lack of a better name )
my zone file
..............
#####################
#ZONE TYPE
fw firewall
net ipv4
loc ipv4
mz ipv4
#Note : 1 server only in mz
#Note : 50 machines in loc
my interfaces file
..................
#####################################
#ZONE IFACE BCAST OPTIONS
net eth0 detect tcpflags,
routefilter,nosmurfs,
logmartians,blacklist
loc eth1 detect dhcp, tcpflags,
detectnets, nosmurfs,
blacklist
mz eth2 detect maclist, blacklist
4. I had mistakenly taught that by putting the mac
addresses of about 20 machines ( all from the loc
zone), i could prevent them from connecting to the
mz zone which had the maclist option activated in the
interfaces file.
5. I now understand that that is wrong. Could anybody
tell me how i could use the mac addresses of machines
(about 20 of them) to control access from
loc zone -> mz zone or vice versa. Just fyi, the
server in the mz zone is running an accounting
package-foxpro based.
bye,
thanx.
____________________________________________________________________________________
Moody friends. Drama queens. Your life? Nope! - their life, your story. Play
Sims Stories at Yahoo! Games.
http://sims.yahoo.com/
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
