Shorewall users - Dec 2002 - rules configuration

hello, I have a 3 card firewall
eth0, local, ip 10.1.5.1/16
eth1, net, ip 200.41.61.228
eth2, dmz, ip 192.168.1.1/24

my local net is 10.1.0.0, but as I am in a school, I have also networks 
10.2.0.0, 10.3.0.0 and 10.4.0.0 that I need to have access to some 
services on the dmz
I decided to put the mail server in the dmz, ip 10.1.1.6, and proxyarp it 
on the local interface, but I can=B4t write the correct rules to allow traffic 
from all my local networks.
when I allow from local to dmz, it only allows the 10.1 network
10.2, 10.3, and 10.4 only receive timeouts, and don=B4t log any 
message...
can anyone send me a sample configuration to make it work ?
thanks in advance !
--
Yaron Zarfati
Administrador de Red
ORT Argentina
www.ort.edu.ar

--On Friday, December 27, 2002 03:15:47 PM -0300 Yaron Zarfati=20
<yaron@ort.edu.ar> wrote:
> hello, I have a 3 card firewall
> eth0, local, ip 10.1.5.1/16
> eth1, net, ip 200.41.61.228
> eth2, dmz, ip 192.168.1.1/24
>
> my local net is 10.1.0.0, but as I am in a school, I have also networks
> 10.2.0.0, 10.3.0.0 and 10.4.0.0 that I need to have access to some
> services on the dmz
> I decided to put the mail server in the dmz, ip 10.1.1.6, and proxyarp it
> on the local interface, but I can=B4t write the correct rules to allow
> traffic  from all my local networks.
> when I allow from local to dmz, it only allows the 10.1 network
> 10.2, 10.3, and 10.4 only receive timeouts, and don=B4t log any
> message...
How have you defined the ''loc'' zone?

-Tom
--
Tom Eastep   \ Shorewall - iptables made easy
Shoreline,    \ http://shorewall.sf.net
Washington USA \ teastep@shorewall.net