search for: faq30

...nk the correct way would be DNAT. Something like this in the rules >file: > >DNAT net:$EXT_IP1 loc:$INT_IP:PORT PROTO PORTS ORIG_DEST > >e.g.: >DNAT net:212.185.120.194 dmz:192.168.40.2 tcp http,https - 194.231.186.177 > >See the examples on top of the rules file and read FAQ30 >http://www.shorewall.net/FAQ.htm#faq30 > >HTH, >Alex > > > Apologies, I am not using SNAT for this. What I have setup is just entries in the NAT table and the ACCEPTS in the rule file. snipit from NAT file: ## .132 == webmail.clockwork.ca 207.35.34.132 eth0:0...

Hello all, I have shorewall setup with 3 SNAT entries for external IP address''s to a single IP internal address. I am wondering how to limit access based on the source IP address. ex. EXT IP 1 access only to port 25 EXT IP 2 access only to port 443 EXT IP 3 access only to port 80 I have the SNAT setup correctly and I have 3 accept line in the rules file (25,80,443) but I can hit

...urse* the two machines are connected to the same interface; they''re both in the local zone! And I''m not using a hosts file. In proof of my diligent search for this answer, I''ll point out that the link for FAQ#30 is broken; it points to file:///vfat/Shorewall-docs/FAQ.htm#faq30, which goes nowhere on my system. Can anyone enlighten me on what''s going on here? The zone transfers seem all successful, by the way. -- _________________________________________ Nachman Yaakov Ziskind, EA, LLM awacs@egps.com Attorney and Counselor-at-Law http://ziski...