James Werkowski
2002-Sep-06 11:12 UTC
[Shorewall-users] Multiple IP addresses on a single adapter
Hi -- I''m migrating shorewall to a new server, and i would like to use aliases on both the external (eth1) and internal (eth0) interfaces. E.g: eth1 xxx.xxx.xxx.194 eth1:0 xxx.xxx.xxx.195 eth1:1 xxx.xxx.xxx.196 etc. Do I set up the ?zones" file like this? ZONE INTERFACE BROADCAST OPTIONS net eth1 detect net eth1:0a detect net eth1:1 detect loc eth0 detect loc eth0:1 detect Are there any gotchas I should be aware of? Thanks in advance. -- Jim James Werkowski Northlight Systems Phone: (518) 758-8121 Cell: (518) 965-8838 Fax: (518) 758-9742 Email: jwerkowski@attglobal.net
niels@wxn.nl
2002-Sep-06 12:13 UTC
[Shorewall-users] Multiple IP addresses on a single adapter
Hi, Don''t know if it will work for you, but I have a same kind of setup and first give the eth0 interface some extra ip''s like this: #ip addr add xxx.xxx.xxx.195/24 dev eth0 #ip addr add xxx.xxx.xxx.196/24 dev eth0 /etc/shorewall/zones looks (very simple) like this then net eth1 detect loc eth0 detect I control the access to the several IP''s in /etc/shorewall/rules Succes, Niels -----Original Message----- From: James Werkowski [mailto:jwerkowski@attglobal.net] Sent: 06 September 2002 13:13 To: shorewall-users@shorewall.net Subject: [Shorewall-users] Multiple IP addresses on a single adapter Hi -- I''m migrating shorewall to a new server, and i would like to use aliases on both the external (eth1) and internal (eth0) interfaces. E.g: eth1 xxx.xxx.xxx.194 eth1:0 xxx.xxx.xxx.195 eth1:1 xxx.xxx.xxx.196 etc. Do I set up the ?zones" file like this? ZONE INTERFACE BROADCAST OPTIONS net eth1 detect net eth1:0a detect net eth1:1 detect loc eth0 detect loc eth0:1 detect Are there any gotchas I should be aware of? Thanks in advance. -- Jim James Werkowski Northlight Systems Phone: (518) 758-8121 Cell: (518) 965-8838 Fax: (518) 758-9742 Email: jwerkowski@attglobal.net _______________________________________________ Shorewall-users mailing list Shorewall-users@shorewall.net http://www.shorewall.net/mailman/listinfo/shorewall-users
Tom Eastep
2002-Sep-11 14:41 UTC
[Shorewall-users] Multiple IP addresses on a single adapter
On Friday 06 September 2002 05:13 am, niels@wxn.nl wrote:> Hi, > > Don''t know if it will work for you, but I have a same kind of setup and > first give the eth0 interface some extra ip''s like this: > > #ip addr add xxx.xxx.xxx.195/24 dev eth0 > #ip addr add xxx.xxx.xxx.196/24 dev eth0 > > /etc/shorewall/zones looks (very simple) like this then > net eth1 detect > loc eth0 detect > > I control the access to the several IP''s in /etc/shorewall/rules > >The Shorewall Setup Guide (http://www.shorewall.net/shorewall_setup_guide.htm) also has a lot of information on how to set this up. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net