hurrells@hurrells.ca
2007-May-03 21:12 UTC
Hello: Multiple Internet and Local Zones/Subnets: What is the best approach?
Hello. First off, thanks for a great product which appears to do all of what I want. I am not a firewall expert but have gotten Shorewall to masq separately with either a Cable or a DSL connection that I have at the office. So I know that the OS, server, interfaces, Cable, DSL and shorewall all work. The Webmin interface is also nice to use as well and optimal for my staff to add simple rules later. Now comes the next prototype which is to use both, at the same time, for example: - For subnet 1, masq local connections from eth0 thru to Cable on eth3. - For subnet 2, masq local connections from eth1 thru to DSL on eth2. I have read all sorts of documentation but cannot easily see how to do this. I am currently trying to MARK packets for each interface but now think that this is not the best way to go about this. I also have to add many routes between subnets to get everybody pinging OK. Can someone point/mentor me through the basic idea of how to get this together? Later for production: I''d preferably like to use sub-interfaces on one local interface in the future so that I can have many subnets. I have another two DSL circuits to add down the road. Finally, I would like to run some vtun''s over one of these to some remote sites. Thank You Stephen ---------------------------------------------------------------- From the Hurrells at hurrells.ca. ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
Prasanna Krishnamoorthy
2007-May-04 03:37 UTC
Re: Hello: Multiple Internet and Local Zones/Subnets: What is the best approach?
On 5/4/07, hurrells@hurrells.ca <hurrells@hurrells.ca> wrote:> Now comes the next prototype which is to use both, at the same time, > for example: > - For subnet 1, masq local connections from eth0 thru to Cable on eth3. > - For subnet 2, masq local connections from eth1 thru to DSL on eth2.You need to have two providers. Use route_rules and tcrules to mark packets as necessary to their destination provider interface. Did this not work? Prasanna. ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/