Hi, All: Thanks for the good work, I really enjoy using shorewall. It's my default firewall on a Ubuntu wired+wireless router/file server. Recently, my internet connection on the Ubuntu box changed from cable to DSL, and I figure that the easiest way to transition into DSL is to turn the modem into bridge mode and dial out to the internet in the ubuntu box. So, far, I have set up everything but there is only internet on the box and not the boxes attached through the Ethernet and wirelessly. Though the attached boxes can ping the ppp0 interface and the DNS servers. Specifically, below are my shorewall interface, zones, masq, and shore.config files. ## nano -w /etc/shorewall/interfaces #ZONE INTERFACE BROADCAST OPTIONS net ppp0 - loc eth0 detect dhcp,tcpflags,detectnets,nosmurfs,routefilter #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE ## nano -w /etc/shorewall/zones #ZONE TYPE OPTIONS IN OUT # OPTIONS OPTIONS fw firewall net ipv4 loc ipv4 #LAST LINE - ADD YOUR ENTRIES ABOVE THIS ONE - DO NOT REMOVE ## nano -w /etc/shorewall/masq #INTERFACE SUBNET ADDRESS PROTO PORT(S) IPSEC ppp0 eth0 #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE ## nano -w /etc/shorewall/shorewall.cfg CLAMPMSS=Yes STARTUP_ENABLED=Yes IP_FORWARDING=On Thanks for the help, Bo _________________________________________________________________ 用手机MSN聊天写邮件看空间,无限沟通,分享精彩! http://mobile.msn.com.cn/ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
CuiBo wrote:> Thanks for the good work, I really enjoy using shorewall. It''s my default firewall on a Ubuntu wired+wireless router/file server. Recently, my internet connection on the Ubuntu box changed from cable to DSL, and I figure that the easiest way to transition into DSL is to turn the modem into bridge mode and dial out to the internet in the ubuntu box. > > So, far, I have set up everything but there is only internet on the box and not the boxes attached through the Ethernet and wirelessly. Though the attached boxes can ping the ppp0 interface and the DNS servers.Please forward the output of ''shorewall dump'' collected as described at http://www.shorewall.net/support.htm#Guidelines. Thanks, -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
CuiBo wrote:> > ## nano -w /etc/shorewall/shorewall.cfgThe name of the file is shorewall.conf, not shorewall.cfg -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/