search for: dmz1

...ow ping by default from internet. I have not copied the files action.drop and action.reject into /etc/shorewall. Nor I have a AllowPing rule in rules file. The policy file is pasted below. #SOURCE DEST POLICY LOG LEVEL LIMIT:BURST #loc net ACCEPT net all DROP info dmz0 net ACCEPT info dmz1 net ACCEPT info fw net ACCEPT info fw dmz0 ACCEPT info fw dmz1 ACCEPT info dmz0 fw ACCEPT info dmz1 fw ACCEPT info dmz0 dmz1 ACCEPT info all all REJECT info Just thought you could enlighten Thanks Siva This email contains Indscape Softech Pvt Ltd.'...

Hi , I have a dude. I have four nic. Lan, wan, dmz1 and dmz2. I use proxy arp for dmz1 and work great. But in dmz2 have 2 machine with heartbeat. IP are type 192.168.x.x If use nat work fine from wan to dmz2, but from lan ?? how to access valid ip ?? Sorry for my bad english :)

...t don''t apply use the other subnet. I tried setting up my masq file as eth0 10.1.0.0/16 eth0:1 10.2.1.0/24 and then my nat file as this so that the real IP (which I''ve listed as IP.DMZ.blah blah) is mapped to the internal DMZ 10.2 network IP.DMZ1.blah.blan eth0:1 10.2.1.235 yes yes IP.DMZ2.blah.blah eth0:1 10.2.1.236 yes yes IP.DMZ3.blah.blah eth0:1 10.2.1.237 yes yes Here''s what I can and can''t do. I''ve set...

...s, at least one VPN to a remote office, and a local trusted network. The configuration will look like: +----------------+ | | net0 ----------+ eth1 eth3 +---- DMZ0 (~20 nodes) | | net1 ----------+ eth2 eth4 +---- DMZ1 (~5 nodes) | eth0 | +--------+-------+ | | Local (~120 nodes) The 1.544 M$ question is can Shorewall handle this kind of a setup? I''ve used shorewall for my home network but ha...

...ges were lost. I've been going in circles and am seeking advise on to how to restore them. I found the bridge interfaces defined in /etc/xen/scripts/network-bridge-pcl, this is what I am trying to restore. Logs/configs files are posted below. There are two guests running, one uses 'xen-dmz1' and the other 'xen-dmz2' I created 'xenbr3' somehow with an interface named after one of the guests. The server will be retired shortly. Any help would be greatly appreciated. Thank you, Scott /etc/xen/scripts/network-bridge-pcl #/bin/sh dir=$(dirname "$0")...

...5 AM, Scott Gennari wrote: > /etc/xen/scripts/network-bridge-pcl > > #/bin/sh > > dir=$(dirname "$0") > "$dir/network-bridge" "$@" vifnum=1 netdev=eth2 bridge=xen-dmz2 > "$dir/network-bridge" "$@" vifnum=3 netdev=eth0 bridge=xen-dmz1 Do you get any error output when you run: /etc/xen/scripts/network-bridge vifnum=1 netdev=eth2 bridge=xen-dmz2 If not, try: bash -x /etc/xen/scripts/network-bridge vifnum=1 netdev=eth2 bridge=xen-dmz2 And if all else fails, set up a bridged interface by hand: brctl addbr xen-dmz2 ip link set...

Hi, in my lan I have two firewall, fw1 is the first and manage inte-vlan routing. Fw2 manage internet and dmz. fw1 and fw2 have an interface (eth4 for both fw2 and fw1) on the same subnet that permit to the host behind fw1 to reach internet, my problem is on fw2: eth4 is the NIC that connect fw2 and fw1, I would''t like masquerading hosts behind fw1, so to eth4 of fw2 arrive all

Hi I am using verion 2.0.10 of Shorewall. My configuration is as follows: Eth1 dmz1 ------------| __________ | | | Eth2 dmz2 | FIREWALL |------| INTERNET | ----------| | _______ | |__________| | |---------...

...port 25 from my mail server to appear on the address 65.223.121.227 so I created the file masq: eth2 192.168.124.18 65.223.121.227 tcp 25 eth1 eth5 eth1 eth3 eth1 eth4 eth1 == net0 == 209.189.103.196/27 eth2 == net1 == 65.223.121.237/28 eth3 == dmz0 eth4 == dmz1 eth5 == loc == 192.168.124.249/24 (Yes I know the danger of having a production server in the local network. I inherited this setup and I am trying to fix it) 65.223.121.227 is on eth2:1 Shorewall restarts cleanly and I see in the status: 0 0 SNAT tcp -- * * 192.168....

Hi, In a routed network environment, without the router , we want to use the shorewall as the firewall/router. The ISP has assigned the following set of IP addresses. WAN IP for subnet 1 (DATA) 220.227.202.X/30 ( to be assigned to eth0 of the shorewall) WAN IP for subnet 2 (Voice) 220.227.202.Y/30 ( to be assigned to eth1 of the shorewall) Addresses assigned for Subnet 1 by

Hey gang, I was wondering if all that documentation could or has been put into PDF format. I usually like to download documentation and read it while I''m sitting comfortably at home and I don''t want to tie up the phone line all night. Thanks, Nino p.s. If so, please feel free to attach the PDF formatted document to my e-mail ;-)