Sergio Navarro i Fajardo
2003-Oct-13 07:28 UTC
[Shorewall-users] Help on route tables and masq ...
Hi, I''m trying to configure a machine with two public ip''s to work as a firewall Two different suppliers provide both public ip''s, so as I have an fw which is made of: eth0 -> supplier A eth1 -> supplier B eth2 -> internal LAN Using the 4.2 section of LARTC documents, a divided rooter between two providers can be made. Even it can be configured to have a loading balance. To create new routing tables, they could be introduced to the shorewall init file. What I''d try it''d be that each of both suppliers would be used in different occasions for the internet output. The question arises in how I''d configure and define it in the MASQ file: /etc/shorewall/masq eh0 eth2 eth1 eth2 Would it be right? That is, when up to the routing table an output interface is chosen, masq will be done upon it? Regards & thanks. -- ____________________________________________________________________ Sergio Navarro i Fajardo snavarro@ctv.es -- sergio.navarro@uv.es GnuPG-Public-Key: 0x24E340FF Alginet / Valencia / Spain
On Mon, 2003-10-13 at 07:27, Sergio Navarro i Fajardo wrote:> > Would it be right? That is, when up to the routing table an output interface > is chosen, masq will be done upon it?Yes -- provided that you spell "eth0" correctly in the first entry. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net