Shorewall users - Feb 2004 - I want to use snmp

How can I get ATU-R ''s  snmp data
shorewall is DROP my ATU-R (192.168.1.1)
my /etc/shorewall/interfaces :

net     ppp0

-----------------------------------------------------------------
每天都 Yahoo!奇摩
海的顏色、風的氣息、愛你的溫度，盡在信紙底圖
http://tw.promo.yahoo.com/mail_premium/stationery.html

On Sunday 01 February 2004 07:59 am, kan6526 wrote:
> How can I get ATU-R ''s  snmp data
> shorewall is DROP my ATU-R (192.168.1.1)
> my /etc/shorewall/interfaces :
>
> net     ppp0
>
Please check the mailing list archives before posting -- if you had, you would 
have found this helpful information:

http://lists.shorewall.net/pipermail/shorewall-users/2002-September/002686.html

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net

On Monday 02 February 2004 06:30 am, kan6526 wrote:
>  --- Tom Eastep <teastep@shorewall.net> 的訊息：> On
>
> Sunday 01 February 2004 07:59 am, kan6526 wrote:
> > > How can I get ATU-R ''s  snmp data
> > > shorewall is DROP my ATU-R (192.168.1.1)
> > > my /etc/shorewall/interfaces :
> > >
> > > net     ppp0
> >
> > Please check the mailing list archives before
> > posting -- if you had, you would
> > have found this helpful information:
>
> http://lists.shorewall.net/pipermail/shorewall-users/2002-September/002686.
>html
>
> yes ,but my case is :
> eth0 192.168.1.10 connected to my ATU-R
> eth1 192.168.2.10 is my local private network
> shorewall is work well ,but local client can''t get
> ATU-R (192.168.1.1) snmp data
>
> what can I do ?
First, please don''t reply off-list.

The general rule for SNMP is:

	ACCEPT  z1   z2 tcp   snmp
	ACCEPT  z1   z2 udp   snmp
	ACCEPT  z1   z2 udp   snmptrap

Where 

	z1 = Zone where SNMP client runs.
	z2 = Zone where SNMP server runs.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net