hi to all!!
I have this type of problem.
i have configured in eth1 (my loc zone) th eip address 192.168.1.254
i do a static route to go to another lan in this firewall with this command:
route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.250
now.. the problem is ..
how could i see the remote lan without do another zone?
because i want that 192.168.1.0 and 192.168.2.0 is in the same eth1.
i created the interface in this method
loc eth1 192.168.1.255,192.168.2.255
i tried to put into hosts file
loc eth1:192.168.1.0/24,192.168.2.0/24
but the iptable told me...
Processing /etc/shorewall/tos...
Rule "all all tcp - ssh 16" added.
Rule "all all tcp ssh - 16" added.
Rule "loc vpn tcp - telnet 16" added.
iptables v1.2.7a: host/network `eth1:192.168.1.0'' not found
Try `iptables -h'' or ''iptables --help'' for more
information.
why???
this is a redhat 9.0 with shorewall 1.4.6c
thnkx to all ..
pls help me!!
--
=======================================Andreoli Luca
System Support Division
Kelyan SMC S.p.a. - Franco Bernab? Group
Via Nuova Ponente 1/A-1/B
41012 Carpi (MO), Italy
Tel.+39 059 637611
Fax.+39 059 694768
E-Mail: l.andreoli@kelyansmc.it
========================================
> hi to all!! > > I have this type of problem. > i have configured in eth1 (my loc zone) th eip address 192.168.1.254 > i do a static route to go to another lan in this firewall with this > command: > route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.250 > now.. the problem is .. > how could i see the remote lan without do another zone? > because i want that 192.168.1.0 and 192.168.2.0 is in the same eth1. > > i created the interface in this method > loc eth1 192.168.1.255,192.168.2.255 > > i tried to put into hosts file > loc eth1:192.168.1.0/24,192.168.2.0/24 > > but the iptable told me... > Processing /etc/shorewall/tos... > Rule "all all tcp - ssh 16" added. > Rule "all all tcp ssh - 16" added. > Rule "loc vpn tcp - telnet 16" added. > iptables v1.2.7a: host/network `eth1:192.168.1.0'' not found > Try `iptables -h'' or ''iptables --help'' for more information. > > why??? > > this is a redhat 9.0 with shorewall 1.4.6cI remember a problem like this which was fixed in shorewall. Please upgrade to the latest version and try again. Simon> > thnkx to all .. > pls help me!! > -- > =======================================Andreoli Luca > System Support Division > Kelyan SMC S.p.a. - Franco Bernab? Group > Via Nuova Ponente 1/A-1/B > 41012 Carpi (MO), Italy > Tel.+39 059 637611 > Fax.+39 059 694768 > E-Mail: l.andreoli@kelyansmc.it > ======================================_______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >
On Fri, 7 Nov 2003, luca wrote:> hi to all!! > > I have this type of problem. > i have configured in eth1 (my loc zone) th eip address 192.168.1.254 > i do a static route to go to another lan in this firewall with this command: > route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.250 > now.. the problem is .. > how could i see the remote lan without do another zone? > because i want that 192.168.1.0 and 192.168.2.0 is in the same eth1. > > i created the interface in this method > loc eth1 192.168.1.255,192.168.2.255Change that to: loc eth 192.168.1.255,192.168.2.255 routeback,newnotsyn -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net
On Fri, 7 Nov 2003, Tom Eastep wrote:> > Change that to: > > loc eth 192.168.1.255,192.168.2.255 routeback,newnotsyn >Second column should be ''eth1''... -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net