[Shorewall-users] How to get going?

Fri, 07 Aug 2009 15:12:48 -0700 

Folks,

I haven't done anything with shorewall so far, and am asking how to get
started. I want to try shorewall as the firewall on my home network,
which is fairly simple:

 internet------ adsl ---- adsl router----firewall----internal net

The adsl router is a zyxel prestige 610H; the firewall is a Linux box
running Fedora 11, with exim, apache, imap, dhcp server. The internal
network uses a dns server running on the firewall but that server
doesn't provide anything to the internet. The apache daemon serves a
couple of external websites.

There are two (more) complicating factors:
1. the adsl router is currently set up using a single NATed IP, but it
has a block of 8 allocated and I'd like to use the others. One reason I
haven't is issues about firewalling. The other uses: as a vpn host,
possibly a mailman IP - that sort of thing.

2. the other factor is that my network is VPN linked to my parents
network (constructed similarly), currently using an openvpn routed
interface that I also want to firewall protect (so a break-in on one
side doesn't automatically mean both sides. I'd like the firewall on
each side to be very similarly set up (if not identical) so as to reduce
the admin. It is important that only traffic destined for the far
internal network traverses the vpn - plain net access happens as normal.

So the whole network is:

internet------ adsl ---- adsl router----firewall----internal net
                                            |
                                            vpn
                                            |
internet------ adsl ---- adsl router----firewall----internal net


Given I'm a shorewall newbie, where should I start?

Thanks

Ruth

------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day 
trial. Simplify your report design, integration and deployment - and focus on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to