Hello list- I''m trying to figure out the best solution to this problem, but everything I''m reading deals with providing Internet access to private networks. I have 10-dot network that needs to access a privately addressed (32.X.X.X) device. The private-address will not be routed to the Internet or vice versa. I have inherited a redhat 7.3 box with shorewall 2.0.0-beta3 (!) with a single physical NIC. If I had time, I would probably go ahead and build a new firewall - but I''m stuck with what I have. Initially I assumed that I would be doing translation for the private address > internet, but I just need to allow my 10. addressed machines to see the 32. device on the internal network. The ports that are accessible are not important, but for the record they are 55, 53, and 77. Suggestions? W. Kennedy wkennedy@medicalmatrix.com -----------------
On 16 Dec 2005 at 16:26, William Kennedy wrote:> I have inherited a redhat 7.3 box with shorewall 2.0.0-beta3 (!) > with a single physical NIC. If I had time, I would probably go ahead > and build a new firewall - but I''m stuck with what I have.The idea that you can have a "Internal Network" with a single nic boggles the mind. If what you say is true, that shorewall box must be behind another router, and that router would be the place to make these changes. Perhaps I misunderstood the problem... -- ______________________________________ John Andersen NORCOM / Juneau, Alaska http://www.screenio.com/ (907) 790-3386 . ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_idv37&alloc_id865&op=click