-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 wisnu dwi hidayat wrote: > Dear Simon, > > Actually the public ip from ISP is (excuse me to hide the IP) > External $fw= 202.xxx.xxx.1 (eth0) > Internal1$fw = 202.xxx.xxx.2 (eth1) to web server with public ip > 202.xxx.xxx.3 > Internal2 $fw= 60.xxx.xxx.1 (eth2) to mail server with public ip > 60.xxx.xxx.2 > > The ISP has given me different subnet public ip especially for mail > server, cause of the old IP has blocked and we can't sending out any > messeges. Actually the old one was in the same subnet with webserver.. > And don't know why they gave us different subnet now.. > > I don't configure masq/NAT yet, but I suspecting the ISP did the > masq/NAT on their router..
I seriously doubt that. Is your ISP routing 60.xxx.xxx.2 via 60.xxx.xxx.1? Or are both addresses being routed via one of your other IP addresses? Or does your ISP expect that both .1 and .2 will respond to ARP requests directly from their upstream router? In that case, hopefully they can still use the same gateway as your Shorewall box is using? These details determine how you must configure your Shorewall system. - -Tom - -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iEYEARECAAYFAkqcF1kACgkQO/MAbZfjDLISUACZASJwPcsTFgNQdJ5lBWKCnYEr Wa0An1nxngffPVzB0VrpcGC77CDkfQWX =U9Gg -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
