Ibrahim Hamouda <[email protected]> wrote: > Assuming eth2 is 50.50.50.1, eth1 is 192.168.170.1 on one firewall, eth2 is > 50.50.50.2, eth1 is 192.168.171.1 on the other. > > How can I make 192.168.170.0 network see 192.168.171.0 network through the > 50.50.50 interfaces?
That's very basic routing, and nothing to do with Shorewall. You need to add a route on each end : ip route add 192.168.171.0/24 via 50.50.50.2 dev eth2 and ip route add 192.168.170.0/24 via 50.50.50.1 dev eth2 To make this persistent, add it to your network setup. Eg, in Debian (and derivatives), in your /etc/network/interfaces you'd have something like : iface eth2 inet static address 50.50.50.1 netmask 255.255.255.252 post-up ip route add 192.168.171.0/24 via 50.50.50.2 dev eth2 ------------------------------------------------------------------------------ Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server from Actuate! Instantly Supercharge Your Business Reports and Dashboards with Interactivity, Sharing, Native Excel Exports, App Integration & more Get technology previously reserved for billion-dollar corporations, FREE http://pubads.g.doubleclick.net/gampad/clk?id=164703151&iu=/4140/ostg.clktrk _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
