-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi! I have a fw with 2 interfaces: eth0 and eth1. eth0 is attached to Internet. eth1(172.20.1.1) is attached to my lan (172.20.1.0/24) and is the default gateway for all the lan. I have another local subnet. The default gateway for this subnet (172.20.2.0/24) is another station (172.20.1.2). How can model this in shorewall? Best wishes! Barreras -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE82QGZRbHiA+KaJkRAi39AJwM/oaq3ES8X0m2qAwpKaSf0MAGZACfZnQR Mu3vPa59uG0whLoh/E6s4No=Shy7 -----END PGP SIGNATURE----- ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
J. R. Barreras wrote:> Hi! > I have a fw with 2 interfaces: eth0 and eth1. eth0 is attached to > Internet. eth1(172.20.1.1) is attached to my lan (172.20.1.0/24) and is > the default gateway for all the lan. I have another local subnet. The > default gateway for this subnet (172.20.2.0/24) is another station > (172.20.1.2). > How can model this in shorewall?http://www.shorewall.net/Multiple_Zones.html -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Wow!!! Yes, RTFM, but... where is the Manual!?!? :) Thnks!!!!! Tom Eastep wrote:> J. R. Barreras wrote: >> Hi! >> I have a fw with 2 interfaces: eth0 and eth1. eth0 is attached to >> Internet. eth1(172.20.1.1) is attached to my lan (172.20.1.0/24) and is >> the default gateway for all the lan. I have another local subnet. The >> default gateway for this subnet (172.20.2.0/24) is another station >> (172.20.1.2). >> How can model this in shorewall? > > http://www.shorewall.net/Multiple_Zones.html > > -Tom > > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > > > ------------------------------------------------------------------------ > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users- -- Saludos!! _____________________________ M.Sc. José Raúl Barreras Jefe de Seguridad Informática G3security 02-2242-259 / 02-2260-947 / 099735869 barreras@g3security.com http://www.g3security.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE8274ZRbHiA+KaJkRAtypAKDXJgHUBBqvGCYJFaHVwtooLf6DuACg1n4v jFJVfmuL5J8O7NM2YSA+cb0=oep3 -----END PGP SIGNATURE----- ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
On 8/28/06, J. R. Barreras <barreras@g3security.com> wrote:> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Wow!!! > Yes, RTFM, but... where is the Manual!?!? :) > Thnks!!!!!Hmm, what else BUT the location of the manual has Tom sent you? ----> http://www.shorewall.net/Multiple_Zones.html <--- ~David> Tom Eastep wrote: > > J. R. Barreras wrote: > >> Hi! > >> I have a fw with 2 interfaces: eth0 and eth1. eth0 is attached to > >> Internet. eth1(172.20.1.1) is attached to my lan (172.20.1.0/24) and is > >> the default gateway for all the lan. I have another local subnet. The > >> default gateway for this subnet (172.20.2.0/24) is another station > >> (172.20.1.2). > >> How can model this in shorewall? > > > > http://www.shorewall.net/Multiple_Zones.html > > > > -Tom > >------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
David Mohr wrote:> On 8/28/06, J. R. Barreras <barreras@g3security.com> wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> Wow!!! >> Yes, RTFM, but... where is the Manual!?!? :) >> Thnks!!!!! > > Hmm, what else BUT the location of the manual has Tom sent you? > ----> http://www.shorewall.net/Multiple_Zones.html <--- >I think that he was saying that prior to my message, he was willing to RTFM but he just didn''t know which FM to R :-) -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
On 8/28/06, Tom Eastep <teastep@shorewall.net> wrote:> > David Mohr wrote: > > On 8/28/06, J. R. Barreras <barreras@g3security.com> wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- > >> Hash: SHA1 > >> > >> Wow!!! > >> Yes, RTFM, but... where is the Manual!?!? :) > >> Thnks!!!!! > > > > Hmm, what else BUT the location of the manual has Tom sent you? > > ----> http://www.shorewall.net/Multiple_Zones.html <--- > > > > I think that he was saying that prior to my message, he was willing to > RTFM but > he just didn''t know which FM to R :-)Haha, yes, you are absolutely right. It is funny how obvious language becomes, when someone points the correct meaning out to you. And I ask myself, how could I missunderstand it in the first place... ~David ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi! No problem!! The language always is problematic... :) Tom was right. I did not know what doc read!! :) Maybe could be useful have a resume of all network topology with references to the docs section. What do you think about? Best wishes!! Barreras David Mohr wrote:> > On 8/28/06, *Tom Eastep* <teastep@shorewall.net > <mailto:teastep@shorewall.net>> wrote: > > David Mohr wrote: > > On 8/28/06, J. R. Barreras <barreras@g3security.com > <mailto:barreras@g3security.com>> wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- > >> Hash: SHA1 > >> > >> Wow!!! > >> Yes, RTFM, but... where is the Manual!?!? :) > >> Thnks!!!!! > > > > Hmm, what else BUT the location of the manual has Tom sent you? > > ----> http://www.shorewall.net/Multiple_Zones.html <--- > > > > I think that he was saying that prior to my message, he was willing > to RTFM but > he just didn''t know which FM to R :-) > > > Haha, yes, you are absolutely right. It is funny how obvious language > becomes, when someone points the correct meaning out to you. And I ask > myself, how could I missunderstand it in the first place... > > ~David > > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > > > ------------------------------------------------------------------------ > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users- -- Saludos!! _____________________________ M.Sc. José Raúl Barreras Jefe de Seguridad Informática G3security 02-2242-259 / 02-2260-947 / 099735869 barreras@g3security.com http://www.g3security.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE83q4ZRbHiA+KaJkRAnT7AKCDj6KYIOUcLt6VuuSQUWEKkOlYtwCgo8rI A6gDo6ohzfg0G8CM3cV+tPI=QBEd -----END PGP SIGNATURE----- ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
J. R. Barreras wrote:> Hi! > No problem!! The language always is problematic... :) > Tom was right. I did not know what doc read!! :) > Maybe could be useful have a resume of all network topology with > references to the docs section. What do you think about?I think it would be very useful if users would spend a few minutes with www.shorewall.net/Documentation_Index.html to familiarize themselves with what is there. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
----- Original message ----- From: Tom Eastep <teastep@shorewall.net>> > think that he was saying that prior to my message, he was willing > to RTFM but he just didn''t know which FM to R :-)I would like to take this opportunity to say thank you to the doc writers. I am a fan of the doc-by-example approach shorewall uses. I suspect this may bite you in the ass from time to time when us users only look to the examples, but it really helped me get up and running very quickly. Shorewall is one product where it really pays to pick up the FM and R it. Thanks! K ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
i totally agreed... On 8/29/06, Kevin Neely <ktneely@astroturfgarden.com> wrote:> > ----- Original message ----- > From: Tom Eastep <teastep@shorewall.net> > > > > think that he was saying that prior to my message, he was willing > > to RTFM but he just didn''t know which FM to R :-) > > I would like to take this opportunity to say thank you to the doc writers. I am a fan of the doc-by-example approach shorewall uses. > I suspect this may bite you in the ass from time to time when us users only look to the examples, but it really helped me get up and running very quickly. > > Shorewall is one product where it really pays to pick up the FM and R it. > > Thanks! > K > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Of course, but a page with many topologies would be helpful... I''m doing my own. When I have it completed, I''ll send to you. C u! Barreras Tom Eastep wrote:> J. R. Barreras wrote: >> Hi! >> No problem!! The language always is problematic... :) >> Tom was right. I did not know what doc read!! :) >> Maybe could be useful have a resume of all network topology with >> references to the docs section. What do you think about? > > > I think it would be very useful if users would spend a few minutes with > www.shorewall.net/Documentation_Index.html to familiarize themselves > with what is there. > > -Tom > >-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE9a7cZRbHiA+KaJkRAoa7AKCdBDfYZaPzI9WU8tNF6rRaNnb2dgCfeTcv g8UEnRmZ7PFFwznil5ArRL8=Kvd2 -----END PGP SIGNATURE----- ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642