On Fri, Nov 07, 2008 at 08:38:55AM +1100, Marcus Limosani wrote: > > I have my ADSL connection. It has a static IP of 165.xx.xx.71. I > have also been allocated a network block of xxx.xxx.xxx.40-48 (6 usable > IP's) > It would help to know if 165.228.58.71 and xxx.xxx.xxx.40-48 are in the same subnet and use the same gateway (I assume yes). > > > My gateway PC has 2 NIC's. Eth0 is used for pppoe connectivity and eth1 > is the internal network interface. > > > > I don't use a DMZ for my servers, they operate on my local network as > 192.168.0.2 and 192.168.0.5 > That is a very dangerous setup.
> 192.168.0.2 is assigned xxx.xxx.xxx.41 and is a windows server that i > require some standard port forwarding/translation too, for email, web > etc > > 192.168.0.5 is assigned xxx.xxx.xxx.42 and is a linux server that i > require web traffic forwarded too (80/443) > How are you mapping the 192.168.0.x <-> xxx.xxx.xxx.4y addresses to each other? We need to see the output of 'shorewall dump' in order to help you better. Using a DMZ and proxyarp is the way I prefer to do this sort of thing. However, you do not provide enough details to be able to suggest anything more specific. What you want to do is very simple. You should be able to start with a two-interface example configuration (included with Shorewall), get that working, and then add proxyarp for your other addresses that you want to map to servers on the local network. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
