Shorewall users - Nov 2002 - odd question

To be honest I didn''t look all that hard for the answer to this in the
docs, forgive me.

Having trouble figuring this one out tho...

Need to setup shorewall to do packet filtering for one subnet only.

i.e. 

internet --> 204.x.x.1 = eth0 | eth1 = 204.x.x.2 <--- machines to be
filtered, all 204.x.x.n

I.e. there is only one subnet on the go here...

I was hoping by defining the interfaces I would be OK...

Is this possible?

> To be honest I didn''t look all that hard for the answer to this in
the
> docs, forgive me.
>
> Having trouble figuring this one out tho...
>
> Need to setup shorewall to do packet filtering for one subnet only.
>
> i.e.
>
> internet --> 204.x.x.1 = eth0 | eth1 = 204.x.x.2 <--- machines to be
> filtered, all 204.x.x.n
>
> I.e. there is only one subnet on the go here...
>
> I was hoping by defining the interfaces I would be OK...
>
> Is this possible?
>
If you can figure out how to define the interfaces and the routing,
Shorewall will do the correct thing. In other words, yours is much more a
routing problem than a firewall problem.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://shorewall.sf.net
ICQ: #60745924  \ teastep@shorewall.net