Rodolfo J. Paiz
2003-Jul-18 04:04 UTC
Fwd: Re: [Shorewall-users] forward all traffic from aliased ip to DMZ..? how?
Sent directly to OP by mistake, copying to list now.>Date: Fri, 18 Jul 2003 05:02:50 -0600 >To: "chris" <chrisj314@free-thoughts.net> >From: "Rodolfo J. Paiz" <rpaiz@simpaticus.com> >Subject: Re: [Shorewall-users] forward all traffic from aliased ip to >DMZ..? how? > >At 7/18/2003 02:38 -0500, you wrote: >>If I wanted to set up a maz on its own subnet and use nat to forward all >>traffic from a single ip address on my firewall to it how would I do >>that. > >What''s a maz? > >I think what you want is DNAT. Check the documentation in >/etc/shorewall/rules for syntax since I''m not sure (and I''m not about to >go read documentation at 5am), but I _think_ you want something like: > >DNAT net dmz:192.168.1.12 > >-- >Rodolfo J. Paiz >rpaiz@simpaticus.com-- Rodolfo J. Paiz rpaiz@simpaticus.com
chris
2003-Jul-18 04:41 UTC
[Shorewall-users] forward all traffic from aliased ipto DMZ..? how?
Maz was suppose to be dmz.... but do I just need DNAT or some sort of nat/snat combination.... I have to tell you though I''m tired.... but I''ll give what you suggested a shot....thanks Chris -----Original Message----- From: shorewall-users-bounces@lists.shorewall.net [mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of Rodolfo J. Paiz Sent: Friday, July 18, 2003 6:04 AM To: shorewall-users@lists.shorewall.net Subject: Fwd: Re: [Shorewall-users] forward all traffic from aliased ipto DMZ..? how? Sent directly to OP by mistake, copying to list now.>Date: Fri, 18 Jul 2003 05:02:50 -0600 >To: "chris" <chrisj314@free-thoughts.net> >From: "Rodolfo J. Paiz" <rpaiz@simpaticus.com> >Subject: Re: [Shorewall-users] forward all traffic from aliased ip to >DMZ..? how? > >At 7/18/2003 02:38 -0500, you wrote: >>If I wanted to set up a maz on its own subnet and use nat to forwardall>>traffic from a single ip address on my firewall to it how would I do >>that. > >What''s a maz? > >I think what you want is DNAT. Check the documentation in >/etc/shorewall/rules for syntax since I''m not sure (and I''m not aboutto>go read documentation at 5am), but I _think_ you want something like: > >DNAT net dmz:192.168.1.12 > >-- >Rodolfo J. Paiz >rpaiz@simpaticus.com-- Rodolfo J. Paiz rpaiz@simpaticus.com _______________________________________________ Shorewall-users mailing list Post: Shorewall-users@lists.shorewall.net Subscribe/Unsubscribe: http://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm