Hi folks!
I am learning how to use Shorewall and
it has been a nice experience.
My University has a range of IP numbers,
under the same domain. They have been
named hiis after the domain name. This
is done in the hosts file.
My problem is that I can not avoid
using the hosts configuration.
My Question is: Is it possible to achieve
this without using the hosts configuration?
The Shorewall configuration is this:
interfaces:
#ZONE INTERFACE BROADCAST OPTIONS
loc eth2 detect
tcpflags,logmartians,blacklist,routefilter
zones:
#ZONE TYPE OPTIONS IN OUT
# OPTIONS OPTIONS
loc firewall
any ipv4
hiis:any ipv4
hosts:
#ZONE HOST(S) OPTIONS
hiis
eth2:130.208.67.0/24,130.208.68.0/22,130.208.72.0/21,130.208.96.0/19,130.208.128.0/18
\
tcpflags
any eth2:0.0.0.0/0 tcpflags
policy:
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
$FW any ACCEPT
hiis $FW ACCEPT
all all REJECT info
I am using Shorewall version : 3.4.4
--
Kindest Regards, Anna Jonna Ármannsdóttir, %& A: Because people read
from top to bottom.
Unix System Aministration, Computing Services, %& Q: Why is top posting bad?
University of Iceland.
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
