Andreas Bittner
2005-Sep-24 11:38 UTC
multiple isp - one internal zone to route to one external isp
hi there, i have 4 nics in a suse linux firewall, with latest stable shorewall 2.4.4-1 eth0 is the internal guest interface (loc2) eth1 is the leased line internet interface (net) eth2 is the normal non-guests internal interface (loc) ppp0 is the additional external dsl pppoe interface (net2?) im already using shorewall with the leased line interface and masquerading the loc zone to the net zone which works all right. now i would like to simply route/masquarade the eth0 guest interface to the ppp0 isp, and just keep the rest with the leased line. i dont want to add an additional machine for this routing/masq task, but just use this linux firewall to independantly route both internal interfaces/zones to the separate external interfaces. is this possible in this way? do i need an additional> net2 ppp0 -in the interfaces file? and what does my providers file need to look like? are there any more things i need to add? i think i dont need communication between the two internal zones. thanks for any hints. regards. ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache''s Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
Jerry Vonau
2005-Sep-25 13:55 UTC
Re: multiple isp - one internal zone to route to one external isp
> hi there, > > i have 4 nics in a suse linux firewall, with latest stable shorewall 2.4.4-1 > > eth0 is the internal guest interface (loc2) > eth1 is the leased line internet interface (net) > eth2 is the normal non-guests internal interface (loc) > ppp0 is the additional external dsl pppoe interface (net2?) > > > im already using shorewall with the leased line interface and > masquerading the loc zone to the net zone which works all right. > > now i would like to simply route/masquarade the eth0 guest interface to > the ppp0 isp, and just keep the rest with the leased line. > > i dont want to add an additional machine for this routing/masq task, but > just use this linux firewall to independantly route both internal > interfaces/zones to the separate external interfaces. > > is this possible in this way? > > do i need an additional > > net2 ppp0 - > in the interfaces file? > > and what does my providers file need to look like? are there any more > things i need to add? > > i think i dont need communication between the two internal zones. > thanks for any hints.Check the archives, Bryan K. Staggs posted a working config, just like yours on Aug 4. Jerry ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache''s Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php