Displaying 8 results from an estimated 8 matches for "packethandling".
2004 Nov 24
6
Route first or NAT?
Hi,
I''m trying to use shorewall for a RAS dialup solution
We have networks we need to connect to with the same ranges internally
(i.e. 2 separate users with a 192.168.0.0/24 range). We connect to these
via a pptp tunnel (or isdn)
The problem we have is that we need to access these networks all the
time, so allocate them a range from our internal range. This will then
be NATed to the
2004 Aug 10
6
why ADD_DNAT_ALIASES missing?
hi,
is there any reason why there is no such thing as ADD_DNAT_ALIASES in
shorewall.conf or in rules (or am i just missed it)? i think about it
like in masq file if the masquaraded outgoing interface is different
from the default firewall intyerface than i can use ip:<digit> where the
digit is the alias number. since dnat is in the rules it can be used
from there. eg: if would like to dnat
2004 Jul 10
0
New Article in the Shorewall Documentation
Please see http://shorewall.net/PacketHandling.html. It details the flow
of a packet through a Shorwall-generated firewall.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2006 Mar 09
3
Shaping questions
Hello Shorewall users,
I have some questions I am hoping someone can answer. I have searched
around the archives but so far I have been unable to find answers. I
am trying to configure traffic shaping on my router/firewall box
running Shorewall 3.0.5/kernel 2.4.31 and have run into some
problems/questions.
My basic set up is: 1500/256kbit ADSL (PPPoE/ppp0) -> Shorewall box
2004 Oct 11
5
Fw: setting an exception source to a redirect rule?
I recently setup shorewall on my freshly rebuilt router box.
I setup transparent proxying using transproxy/dansguardian/privoxy/squid.
My current rules for the redirect are:
REDIRECT loc 81 tcp www - !192.168.100.0/24
ACCEPT fw net tcp www
How do I set this so that all the request are redirected except for requests FROM a certain machine (192.168.100.11)?
I
2004 Dec 16
12
A question on rules simplification
[newbie question]
Before using Shorewall I used to manually write some very short iptables
rules which where probably much poorer than what this Shorewall gem does
but I could "follow" them very easily.
Now reading the output of iptable -L gives me a terrible headache.
Is there some tool that graphs the rules in order to "see" them better ?
For instance I was experiencing
2008 Sep 17
10
netfilter + vpn + how/why + etc...
Hi,
I have a few questions about the inner workings of netfilter
(a graphical layout of my network setup @
https://aequorin.homeunix.net:62389/local/media/network-graph.png)
1) These are the syslog entries for some simple connection tests.
Shorewall/netfilter has been set to record all stateful connections
SSH is recognized as phys(eth0) -> $FW traffic. This is because PHYSIN
is
2009 Apr 30
15
Shorewall Firewall con Openswan and OpenVPN
Hello guys,
I past the last days trying to configure my shorewall 4.06 firewall to
allow openvpn bridging connection.
My scenario is the following:
roadwarrior (openvpn client) -------------> Internet ------------>
(X.Y.W.Z - eth0) Firewall/Gateway (10.x.x.254 - eth1) --------> Local
Lan -------> OpenVPN Server (10.x.x.249 - br0)
where 10.x.x.0-254 is my private lan
X.Y.Z.W is