Hi! REDIRECT lan 3328 tcp www - !192.168.0.0/29,10.0.0.0/16 This rules redirect all traffic web to proxy but howto exclude 1 ip from redirect ?? REDIRECT lan 53 tcp domain - REDIRECT lan 53 udp domain - And in this case howto exclude some ip ? Thx.
NONAT loc:IPADDRESS net tcp www ----- Original Message ----- From: "Rodrigo Cortes Cano" <raprop@koslan.cl> To: <shorewall-users@lists.shorewall.net> Sent: Tuesday, June 07, 2005 1:45 PM Subject: [Shorewall-users] redirect and special rules> Hi! > > > > REDIRECT lan 3328 tcp www - > !192.168.0.0/29,10.0.0.0/16 > > > > This rules redirect all traffic web to proxy but howto exclude 1 ip from > redirect ?? > > > > REDIRECT lan 53 tcp domain - > > REDIRECT lan 53 udp domain - > > > > And in this case howto exclude some ip ? > > > > > > Thx. > > > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm
But... nonat requiere redirect- o dnat- In this case REDIRECT- lan 3328 tcp www - !192.168.0.0/29,10.0.0.0/16 ACCEPT lan fw tcp www NONAT lan:IP wan tcp wwww This is the way ?? -----Mensaje original----- De: shorewall-users-bounces@lists.shorewall.net [mailto:shorewall-users-bounces@lists.shorewall.net] En nombre de Joshua Mercado Enviado el: Martes, 07 de Junio de 2005 17:44 Para: Mailing List for Shorewall Users Asunto: Re: [Shorewall-users] redirect and special rules NONAT loc:IPADDRESS net tcp www ----- Original Message ----- From: "Rodrigo Cortes Cano" <raprop@koslan.cl> To: <shorewall-users@lists.shorewall.net> Sent: Tuesday, June 07, 2005 1:45 PM Subject: [Shorewall-users] redirect and special rules> Hi! > > > > REDIRECT lan 3328 tcp www - > !192.168.0.0/29,10.0.0.0/16 > > > > This rules redirect all traffic web to proxy but howto exclude 1 ip from > redirect ?? > > > > REDIRECT lan 53 tcp domain - > > REDIRECT lan 53 udp domain - > > > > And in this case howto exclude some ip ? > > > > > > Thx. > > > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm_______________________________________________ Shorewall-users mailing list Post: Shorewall-users@lists.shorewall.net Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm
REDIRECT loc 3328 tcp www ACCEPT fw net tcp www NONAT loc:IPTOEXCLUDE net tcp www ----- Original Message ----- From: "Rodrigo Cortes Cano" <raprop@koslan.cl> To: "''Mailing List for Shorewall Users''" <shorewall-users@lists.shorewall.net> Sent: Tuesday, June 07, 2005 2:51 PM Subject: RE: [Shorewall-users] redirect and special rules> But... nonat requiere redirect- o dnat- > In this case > > REDIRECT- lan 3328 tcp www -!192.168.0.0/29,10.0.0.0/16> ACCEPT lan fw tcp www > NONAT lan:IP wan tcp wwww > > This is the way ?? > > -----Mensaje original----- > De: shorewall-users-bounces@lists.shorewall.net > [mailto:shorewall-users-bounces@lists.shorewall.net] En nombre de Joshua > Mercado > Enviado el: Martes, 07 de Junio de 2005 17:44 > Para: Mailing List for Shorewall Users > Asunto: Re: [Shorewall-users] redirect and special rules > > NONAT loc:IPADDRESS net tcp www > > > ----- Original Message ----- > From: "Rodrigo Cortes Cano" <raprop@koslan.cl> > To: <shorewall-users@lists.shorewall.net> > Sent: Tuesday, June 07, 2005 1:45 PM > Subject: [Shorewall-users] redirect and special rules > > > > Hi! > > > > > > > > REDIRECT lan 3328 tcp www - > > !192.168.0.0/29,10.0.0.0/16 > > > > > > > > This rules redirect all traffic web to proxy but howto exclude 1 ip from > > redirect ?? > > > > > > > > REDIRECT lan 53 tcp domain - > > > > REDIRECT lan 53 udp domain - > > > > > > > > And in this case howto exclude some ip ? > > > > > > > > > > > > Thx. > > > > > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm
Im sorry, I am assuming that you are running the proxy on the same box as the firewall. If not, then it''s a different rule. Joshua ----- Original Message ----- From: "Joshua Mercado" <joshm@riannabelle.no-ip.org> To: "Mailing List for Shorewall Users" <shorewall-users@lists.shorewall.net> Sent: Tuesday, June 07, 2005 3:06 PM Subject: Re: [Shorewall-users] redirect and special rules> REDIRECT loc 3328 tcp www > ACCEPT fw net tcp www > NONAT loc:IPTOEXCLUDE net tcp www > > > > > > ----- Original Message ----- > From: "Rodrigo Cortes Cano" <raprop@koslan.cl> > To: "''Mailing List for Shorewall Users''" > <shorewall-users@lists.shorewall.net> > Sent: Tuesday, June 07, 2005 2:51 PM > Subject: RE: [Shorewall-users] redirect and special rules > > > > But... nonat requiere redirect- o dnat- > > In this case > > > > REDIRECT- lan 3328 tcp www - > !192.168.0.0/29,10.0.0.0/16 > > ACCEPT lan fw tcp www > > NONAT lan:IP wan tcp wwww > > > > This is the way ?? > > > > -----Mensaje original----- > > De: shorewall-users-bounces@lists.shorewall.net > > [mailto:shorewall-users-bounces@lists.shorewall.net] En nombre de Joshua > > Mercado > > Enviado el: Martes, 07 de Junio de 2005 17:44 > > Para: Mailing List for Shorewall Users > > Asunto: Re: [Shorewall-users] redirect and special rules > > > > NONAT loc:IPADDRESS net tcp www > > > > > > ----- Original Message ----- > > From: "Rodrigo Cortes Cano" <raprop@koslan.cl> > > To: <shorewall-users@lists.shorewall.net> > > Sent: Tuesday, June 07, 2005 1:45 PM > > Subject: [Shorewall-users] redirect and special rules > > > > > > > Hi! > > > > > > > > > > > > REDIRECT lan 3328 tcp www - > > > !192.168.0.0/29,10.0.0.0/16 > > > > > > > > > > > > This rules redirect all traffic web to proxy but howto exclude 1 ipfrom> > > redirect ?? > > > > > > > > > > > > REDIRECT lan 53 tcp domain - > > > > > > REDIRECT lan 53 udp domain - > > > > > > > > > > > > And in this case howto exclude some ip ? > > > > > > > > > > > > > > > > > > Thx. > > > > > > > > > > > > _______________________________________________ > > > Shorewall-users mailing list > > > Post: Shorewall-users@lists.shorewall.net > > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > > Support: http://www.shorewall.net/support.htm > > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm
Is correct, proxy is in same box as firewall. thx. -----Mensaje original----- De: shorewall-users-bounces@lists.shorewall.net [mailto:shorewall-users-bounces@lists.shorewall.net] En nombre de Joshua Mercado Enviado el: Martes, 07 de Junio de 2005 18:23 Para: Mailing List for Shorewall Users Asunto: Re: [Shorewall-users] redirect and special rules Im sorry, I am assuming that you are running the proxy on the same box as the firewall. If not, then it''s a different rule. Joshua ----- Original Message ----- From: "Joshua Mercado" <joshm@riannabelle.no-ip.org> To: "Mailing List for Shorewall Users" <shorewall-users@lists.shorewall.net> Sent: Tuesday, June 07, 2005 3:06 PM Subject: Re: [Shorewall-users] redirect and special rules> REDIRECT loc 3328 tcp www > ACCEPT fw net tcp www > NONAT loc:IPTOEXCLUDE net tcp www > > > > > > ----- Original Message ----- > From: "Rodrigo Cortes Cano" <raprop@koslan.cl> > To: "''Mailing List for Shorewall Users''" > <shorewall-users@lists.shorewall.net> > Sent: Tuesday, June 07, 2005 2:51 PM > Subject: RE: [Shorewall-users] redirect and special rules > > > > But... nonat requiere redirect- o dnat- > > In this case > > > > REDIRECT- lan 3328 tcp www - > !192.168.0.0/29,10.0.0.0/16 > > ACCEPT lan fw tcp www > > NONAT lan:IP wan tcp wwww > > > > This is the way ?? > > > > -----Mensaje original----- > > De: shorewall-users-bounces@lists.shorewall.net > > [mailto:shorewall-users-bounces@lists.shorewall.net] En nombre de Joshua > > Mercado > > Enviado el: Martes, 07 de Junio de 2005 17:44 > > Para: Mailing List for Shorewall Users > > Asunto: Re: [Shorewall-users] redirect and special rules > > > > NONAT loc:IPADDRESS net tcp www > > > > > > ----- Original Message ----- > > From: "Rodrigo Cortes Cano" <raprop@koslan.cl> > > To: <shorewall-users@lists.shorewall.net> > > Sent: Tuesday, June 07, 2005 1:45 PM > > Subject: [Shorewall-users] redirect and special rules > > > > > > > Hi! > > > > > > > > > > > > REDIRECT lan 3328 tcp www - > > > !192.168.0.0/29,10.0.0.0/16 > > > > > > > > > > > > This rules redirect all traffic web to proxy but howto exclude 1 ipfrom> > > redirect ?? > > > > > > > > > > > > REDIRECT lan 53 tcp domain - > > > > > > REDIRECT lan 53 udp domain - > > > > > > > > > > > > And in this case howto exclude some ip ? > > > > > > > > > > > > > > > > > > Thx. > > > > > > > > > > > > _______________________________________________ > > > Shorewall-users mailing list > > > Post: Shorewall-users@lists.shorewall.net > > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > > Support: http://www.shorewall.net/support.htm > > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm_______________________________________________ Shorewall-users mailing list Post: Shorewall-users@lists.shorewall.net Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm