Körtvélyesi Péter wrote: > Hello! > > I have a network configured the following way: > > > > The VPN1 and VPN2 is able to communicate, LAN1 and LAN2 can reach the > internet. > > How should I configure shorewall to enable the communication between > LAN1 and LAN2? I'd need LAN2 to reach all hosts in LAN1 (and LAN1 to > reach LAN2). Also Lan2 to reach Fw's eth0 192.168.0.10. First thing is to make sure you have routing set. To reach LAN2 from LAN1, VPN1 must have route to 192.168.1.0/24 via VPN2 router, and vice versa.
As for Shorewall, if you want unrestricted access, you can add 192.168.1.0/24 subnet to local zone in hosts file. Like: loc br0:192.168.200.0/24 routeback,tcpflags loc br0:192.168.219.0/24 routeback,tcpflags It is possible that those 2 rows are now syntax correct so please check documentation concerning /etc/shorewall/hosts file do see what options new need (I use bridge interface in this case). > > > Thanks for your help in advance it is greatly appreciated! > > Peter, > Hungary > > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------------ > Register Now & Save for Velocity, the Web Performance & Operations > Conference from O'Reilly Media. Velocity features a full day of > expert-led, hands-on workshops and two days of sessions from industry > leaders in dedicated Performance & Operations tracks. Use code vel09scf > and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf > > > ------------------------------------------------------------------------ > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------------ Register Now & Save for Velocity, the Web Performance & Operations Conference from O'Reilly Media. Velocity features a full day of expert-led, hands-on workshops and two days of sessions from industry leaders in dedicated Performance & Operations tracks. Use code vel09scf and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
