Hello,
I'm new to shorewall and new to the list. My question is related to aliased
interface and the proper configuration of shorewall for my setup.
I currently have a VPS running at linode and it has the following
configuration:
eth0 primary address is publicly routed
eth0:1 is a private address and internal only
What I'd like to do is:
- limit traffic from the Internet to the FW (which is standard and makes
sense).
But I'd also like to
- limit traffic on the private aliased interface as there are other VPS's
on that same network which have nothing to do with me. I want to limit
traffic on the internal private network to only the VPS's that I own and no
others.
I've played around with a few different configurations, but really don't
think I'm understanding what needs to happen here with respect to
shorewall. From a firewall perspective it would seem simple enough to only
allow traffic between my VPS's on the backend network but I'm not having
luck translating that...
Currently I've got a one-to-one NAT setup from my Internet IP to the
private IP. This is working great but I'm not sure what to do next.
Was wondering is someone could point me in the right direction. I'd send my
configuration but there really isn't much to it. Like I said I'm using a
basic configuration to do NAT and have three zones setup: fw, loc, and net.
I've RTFM, esp the aliased interfaces page but still don't think I've
grokked how to setup the rules.
Thanks for the help!
--
Aaron
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
