similar to: Terrible, horrible firewall issues in * to * setup

Hi, in my lan I have two firewall, fw1 is the first and manage inte-vlan routing. Fw2 manage internet and dmz. fw1 and fw2 have an interface (eth4 for both fw2 and fw1) on the same subnet that permit to the host behind fw1 to reach internet, my problem is on fw2: eth4 is the NIC that connect fw2 and fw1, I would''t like masquerading hosts behind fw1, so to eth4 of fw2 arrive all

Hi Everyone, In my HVM guest''s config file, I have given my guest 3 interface. I have called them fw1, fw2 and fw3. I have joined each interface to a bridge on the Dom0. This does appear when I do a "brctl show". However, there are 3 other interfaces also added called tapx.0,tapx.1 and tapx.2 (Where x is the domain ID for the guest). Furthermore, I am only able to run

I don't get this. I am using a freshly installed copy of Fedora 19 and starting up glusterd for the first time. The goal is to have a replicated directory on two systems. But for right now, I can't even start up the glusterd daemon right out of the box. Trying to follow the Quick Start directions at http://gluster.org/community/documentation/index.php/QuickStart is, well, challenging.

Hi, I hope this is not OT. I searched through the archives but didn''t find anything really answering my question. I want to create a cluster of two firewalls with Linux-HA so that if the primary fail, the secondary firewall will take over. Note that I don''t care about syncing states between firewalls, they will just have to reconnect :) It''s a typical

Hi, I''m seeking advice for the following setup. Shorewall 2.2.2, debian/sarge on Soekris net4501 boards. We have two ISP feeds (let''s call them ISP-1 and ISP-2) and get 8 static IPs with each feed. The plan is to have the publicly accessible servers sitting in the DMZ connected to ISP-1. Our local intranet (LOC) will be connected to ISP-2. There will be 3 firewall/routers: fw1

Hello everybody: Here is my "network layout": ISP1 ISP2 | | | | +-----eth0---------eth1------+ | | | FC 3 box | | | +-----eth2---------eth3------+ |

Hi, I have a simple question. I have my firewall with 2 external Ip and 1 lan. For example ISP1 FW LAN----Mail Server ISP2 Ok, when i DANT the smpt port to my mail server, I can see that the conection in my mail server comes from the external IP of my ISP. I need to change this so the conection to my mail server cames from the LAN IP from my firewall Is this possible?

Hello List: Recently our shorewall FW server went dead (PS failure) & brought the entire system down. Luckily we are testing the FW and other servers, so we did not loose anything. Now we have decided to setup two Shorewall FW servers with a primary & another fallover FW server. I have done some research cruised the Internet and found that a product ''UCARP''

I'm trying to use Samba to get access to my Unix printer. Unix System is FreeBSD-2.2-stable, and I'm running the latest port of Samba for FreeBSD-2.2-stable (Samba 2.0.0) from ftp.freebsd.org. I've checked all the references I can find on the web, and can't see the problem. Can anyone point out what I'm doing wrong. Under NT (adding remote printer), I see the entry for the

do you have selinux enabled? It should not be. p p.s. - if it comes to re-installing, you can backup all your settings with the freepbx backup utility and then restore so that you don't have to re-enter everything. From: "Lachek Butalek" <lachek@gmail.com> To: "Asterisk Users Mailing List - Non-Commercial Discussion" <asterisk-users@lists.digium.com> Date:

I just tried to set up a tinc test installation, but I guess I did something wrong, because I can only ping one direction. Here's my setup (lan1,192.168.99.0)<-->firewall1<-vpn->firewall2<-->(lan2,192.168.100.0) firewall1 has tap0 on 192.168.88.2 firewall2 has tap0 on 192.168.88.3 i set up the following routes : on firewall1 : 192.168.100.0 gw firewall2(192.168.88.3) on

So I took a chance with an X100P knock-off on eBay. I'm running Asterisk + FreePBX on a PowerMac G3 (beige desktop) using Slackintosh 10.2 and kernel 2.6.16.16. Everything has been fine up until now. I compile the 1.2.5 Zaptel drivers without a problem, get the udev configuration in, modprobe zaptel, and finally modprobe wcfxo. At this point, I get the message: ZT_CHANCONFIG failed on channel

Situation, simple home setup: * Trixbox 2.0 * Feature Codes installed * GNet PA-168V based ATA * Cheesy cordless analogue phone >From what I gather, dialing *70 from the handset should activate Call Waiting. All it seems to do is change the message "The person at <extension> is on the phone" to "<ring> <ring> The person at <extension> is

Figuring I knew what I was doing (I didn't - surprise) I added a totally unnecessary line in /etc/asterisk/extensions_additional.conf a couple of days ago. Troubleshooting a dialing rule issue, I'm now realizing that FreePBX is updating its database with the new settings but is not rewriting/updating extensions_additional.conf with the changes I'm making. I've tried renaming the

I have this configuration: UA1 ---> FW1 ---> Asterisk ----> FW2 --> Internet --> UA2 UA has provate address (192.168.x.x) Asterisk has public address I want to be reach somebody at the internet. My idea was that asterisk works as a Proxy. Then i would have a SIP/RTP connection between UA1 and Asterisk and an other SIP/RTP connection between Asterisk and UA2. (asterisk is

Hi to all, +-------+ eth1 +-------+ | |==========| | ''network 1'' ----| A | | B |---- ''network 2'' | |==========| | +-------+ eth2 +-------+ A and B are routers # tc qdisc add dev eth1 root teql0 # tc qdisc add dev eth2 root teql0 # ip link set

Hi, I have an DNAT ISSUE with PREROUTING. This is my setup. I have 2 firewalls running iptables. Pls asume 1.2.3.4/29 is the internet interace of FIRST firewall. 2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in that DMZ zone, mail server runnig @ 192.168.100.3 Now I want to DNAT port 25 of FISRT firewall ( i.e - its ip address - 1.2.3.4/29) to the internet ip

Hi, I am migrating from one ISP to another, and would like to run both simultaneously for a while. So: (both netmask 255.255.255.248) [ISP1] 24.106.62.180 [ISP2] 209.181.237.230 | | | | \ / -----[ HUB ]----- | | -------- eth0 --------- | Linux FW/Server | ---------eth1 --------- | | [ HUB ] | 10.0.0.x/255.255.255.0 The default IP on

I've gotten nothing from http://bbs.atcom.cn on this so far. Perhaps someone on the list has experience with this. Is there a way to get MWI support for PA168V-based ATAs? Apparently some IP phones based on the PA168V chip has this support already (Atcom AT-320 for example) by configuring Asterisk with 'mailboxdetails=yes' in iax.conf. On my ATA, however, it does nothing. Any

can someone overthere help? the server specs are as follows HP DL380G4 Dual Intel Xeon 3.2GHz processor with 4GB RAM, running fedora core 3 asterisk-1.2.5 ss7-0.8.3d. using sip as advised to receive calls from another gateway in US. using g729 in transcoding way. however, I noticed the call hit the 51 active calls which is 102channels, I run "top" to check the system resources usage