I want traffic from IP xxx.yyy.zzz.8 and .9 on port 2022 to use IP xxx.yyy.zzz.4 as Source, is that possible? This is because it''s possible to access that port on a system from .4 but not .8/.9 .4 is Shorewalls external IP (and used as default gateway for .8 and .9) on eth0 and the zone is net .8 and .9 is on zone dmz and connected to eth1 with ProxyARP Mvh Joakim Hellström President X-ellent Software www.xellentsoftware.com
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Joakim Hellström wrote:> I want traffic from IP xxx.yyy.zzz.8 and .9 on port 2022 to use IPxxx.yyy.zzz.4 as Source, is that possible?>Yes -- http://shorewall.net/Documentation.htm#Masq - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFBg/l0O/MAbZfjDLIRAhn5AJ4iJdUfC1Lhgphok+WO3dKro8vHQACeKWCj fwzhWn6rGSAPRo7KwJUL7Rs=WwgN -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Joakim Hellström wrote:> I read it but I can''t figure out how...Sigh....> > Only port 2022 should have source .4, all other traffic from .8 and .9should have there own address.>You don''t say whether this is TCP or UDP so I''ll guess TCP: INTERFACE SUBNET ADDRESS PROTO PORT <external if> x.x.x.8/31 x.x.x.4 tcp 2022 - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFBg/vEO/MAbZfjDLIRApkZAJwMMdOMiiIPbwBAqzUxyMiM/fwwHgCfVvCM cPRPvg2CUiKkxct33P0L69Y=ON6s -----END PGP SIGNATURE-----
I read it but I can''t figure out how... Only port 2022 should have source .4, all other traffic from .8 and .9 should have there own address. Mvh Joakim Hellström President X-ellent Software www.xellentsoftware.com -----Original Message----- From: shorewall-users-bounces@lists.shorewall.net [mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of Tom Eastep Sent: den 30 oktober 2004 22:29 To: Mailing List for Shorewall Users Subject: Re: [Shorewall-users] Change Source address for port 2022? -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Joakim Hellström wrote:> I want traffic from IP xxx.yyy.zzz.8 and .9 on port 2022 to use IPxxx.yyy.zzz.4 as Source, is that possible?>Yes -- http://shorewall.net/Documentation.htm#Masq - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFBg/l0O/MAbZfjDLIRAhn5AJ4iJdUfC1Lhgphok+WO3dKro8vHQACeKWCj fwzhWn6rGSAPRo7KwJUL7Rs=WwgN -----END PGP SIGNATURE----- _______________________________________________ Shorewall-users mailing list Post: Shorewall-users@lists.shorewall.net Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm