Hi all, Hi Tom, i have a question, i read in your FAQs about provider setups : *If you are using|/etc/shorewall/providers|because you have multiple Internet connections, we recommend that you specify*balance*even if you don''t need i**t.* I have 3 providers, 2 of them balanced, but in the third one i only want to send some ports like https, msn, etc /etc/shorewall/providers insert-oliver 1 1 main eth4 192.168.41.2 track,balance=2 eth0 insert-hotel 2 2 main eth3 192.168.40.2 track,balance=1 eth0 dedicado 3 3 main eth1 209.13.97.81 track eth0 /etc/shorewall/tcrules 3:P 10.10.10.0/24 0.0.0.0/0 tcp 443,1863,465,995,7001,6891:6900,1503,3389,5061,5050,5100 3:P 10.10.10.0/24 0.0.0.0/0 udp 9,7001,5000,5004,49152 My question is, how i can send only those ports to provider 3 and using balance option like you recommend to do ? is this valid to use this? 1:P 10.10.10.0/24 0.0.0.0 tcp 2:P 10.10.10.0/24 0.0.0.0 tcp 3:P 10.10.10.0/24 0.0.0.0/0 tcp 443,1863,465,995,7001,6891:6900,1503,3389,5061,5050,5100 3:P 10.10.10.0/24 0.0.0.0/0 udp 9,7001,5000,5004,49152 That setup i post without the balance is actually working, but if i set a rule in tcrule like: 3 $FW 0.0.0.0 tcp 21 Dont work, and i guess was because i am not using balance option on providers like you recommend. Thanks for your time. ------------------------------------------------------------------------------ 10 Tips for Better Web Security Learn 10 ways to better secure your business today. Topics covered include: Web security, SSL, hacker attacks & Denial of Service (DoS), private keys, security Microsoft Exchange, secure Instant Messaging, and much more. http://www.accelacomm.com/jaw/sfnl/114/51426210/
El 22/07/11 20:38, Ricardo Rios escribió:> Hi all, Hi Tom, i have a question, i read in your FAQs about provider > setups : > > *If you are using|/etc/shorewall/providers|because you have multiple > Internet connections, we recommend that you specify*balance*even if > you don''t need i**t.* > > I have 3 providers, 2 of them balanced, but in the third one i only > want to send some ports like https, msn, etc > > /etc/shorewall/providers > insert-oliver 1 1 main eth4 > 192.168.41.2 track,balance=2 eth0 > insert-hotel 2 2 main eth3 > 192.168.40.2 track,balance=1 eth0 > dedicado 3 3 main eth1 > 209.13.97.81 track eth0 > > /etc/shorewall/tcrules > > 3:P 10.10.10.0/24 0.0.0.0/0 tcp > 443,1863,465,995,7001,6891:6900,1503,3389,5061,5050,5100 > 3:P 10.10.10.0/24 0.0.0.0/0 udp 9,7001,5000,5004,49152 > > My question is, how i can send only those ports to provider 3 and > using balance option like you recommend to do ? > is this valid to use this? > > 1:P 10.10.10.0/24 0.0.0.0 tcp > 2:P 10.10.10.0/24 0.0.0.0 tcp > 3:P 10.10.10.0/24 0.0.0.0/0 tcp > 443,1863,465,995,7001,6891:6900,1503,3389,5061,5050,5100 > 3:P 10.10.10.0/24 0.0.0.0/0 udp 9,7001,5000,5004,49152 > > That setup i post without the balance is actually working, but if i > set a rule in tcrule like: > 3 $FW 0.0.0.0 tcp 21 > > Dont work, and i guess was because i am not using balance option on > providers like you recommend. > > Thanks for your time.someone know ? :S ------------------------------------------------------------------------------ Got Input? Slashdot Needs You. Take our quick survey online. Come on, we don''t ask for help often. Plus, you''ll get a chance to win $100 to spend on ThinkGeek. http://p.sf.net/sfu/slashdot-survey