Hi, I am trying something so easy but doesnt work for me.
I want to have more than once zone in my lan, for example my lan es
192.168.0.0/24 and I want to have one zone for servers, other for admin Pcs.
etc
here is my conf:
Interfaces:
--------------
#ZONE INTERFACE BROADCAST OPTIONS
- eth3 detect
net eth1 detect norfc1918
net eth0 detect norfc1918
net eth2 detect norfc1918
vpn tun0 detect
hosts:
---------
#ZONE HOST(S) OPTIONS
tec eth3:$TECNICA
p2p eth3:$MUSICA1,$MUSICA2
loc eth3:192.168.0.0/24
params:
------------
MUSICA1=192.168.0.21
MUSICA2=192.168.0.22
SMTP_SERVERS=192.168.0.11,192.168.0.15
TECNICA=192.168.0.219
zones:
---------
#ZONE TYPE OPTIONS IN OUT
# OPTIONS OPTIONS
fw firewall
net ipv4
loc ipv4
p2p ipv4
vpn ipv4
tec ipv4
part of rules file:
-----------------------
ACCEPT tec net tcp smtp,pop3,3306
When I try to connect to my sql server this happens:
Nov 7 16:20:17 fw3 kernel: Shorewall:all2all:REJECT:IN=eth3 OUT=eth0 SRC=
192.168.0.219 DST=*public IP* LEN=48 TOS=0x00 PREC=0x00 TTL=127 ID=35586 DF
PROTO=TCP SPT=5783 DPT=3306
What is wrong?
Thanks
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
