Displaying 20 results from an estimated 1000 matches similar to: "Need help and advised"
2006 Jan 27
5
Advice please - best hardware/config to combine 3 ISPs
I want to build a robust firewall for a resort installation. The
resort''s telephony is entirely VOIP, asterisk based. We have the
following internet feeds:
1) 512/512 kb fixed bandwidth leased line with static IP from Telco-
primary connection, expensive, to use for VOIP, VPN traffic, mail
server, SSH access for remote work. Reliable.
2) 256/512 kb ADSL from Telco, not fixed IP -
2006 Feb 06
6
(no subject)
We had a running ipsec shorewall system to all of our remote offices. We
added a dmz to the firewall and implemented proxy arp for that dmz. We have
checked everything two or three times and cannot figure out why the vpns
will no longer come up.
We are using shorewall version 2.2.3 from the debian stable sarge
distribution. We noticed the errata that for 2.0.0 there was a problem with
proxy
2006 Feb 11
6
Shorewall problems simple one i think!!
Hi all
well im using two interfaces.. e.g: eth0:202.188.9.2 is WAN and
eth1;192.168.1.1 is LAN.. when im in LAN let say from 192.168.1.9 i cant
open WAN IP address e.g: 202.188.9.2 .. why? how to set this?... i only can
open 192.168.1.1 .. if possible i want to have both accessable.. thanks
rgds
amir
2006 Feb 17
3
dansguardian+squid masquerading not working
Hello Everyone!
I am using shorewall-3.0.5 on suse linux.
Recently we have implemented dansguardian running on 8080 and squid on
port 3128.
Previously (before dans guardian) masquerading was working fine but
after the implementation of dansguardian masquerading is not working.
My rules file has entry
Previous entry was
ACCEPT loc:192.192.192.3 net
REDIRECT loc 8080 tcp
2006 Feb 07
7
Masquerading issue
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
Shorewall-3.0.3
RH9 (+legacy updates)
eth0: loc: 192.168.1.0/24
eth0:0: loc: 192.168.20.0/24
eth1:: 69.70.32.8/29
I''m worked all day on an issue I found today and I just can''t find a way
to fix my problem.
So, basically, for now, my network looks like this:
Internet
^
|
(69.70.32.8/29)
Firewall
192.168.1.1
2006 Jan 17
12
Multiple ISPs: How to force $FW traffic to a specific ISP (reprise)
Hi!
I have reprise try to resolve this problem, suspended from 17 dec 2005
I have try to apply the suggest of Jerry (see above).
The problem still exist.
See attach shorewall config, dump and tcpdump when I check to exit whit
SSH from firewall...
In the masq file is reported the last my attempt in order to resolve my
problem, however I have test also the example reported in MultiISP.html,
but
2006 Feb 12
11
Local Network Can't Get Past Shorewall to the Internet
Greetings all,
I have just install Shorewall on a Debian system and
I''m using it as a firewall on an internal network.
The specifics of the system are as follows:
firewall:/var/log# shorewall version
3.0.4
firewall:/var/log# uname -a
Linux firewall 2.6.12-1-386 #1 Tue Sep 27 12:41:08 JST
2005 i586 GNU/Linux
Shorewall start successfully and $FW can connect to
the Internet for upgrading
2006 Jan 31
5
Traffic Shaping and Bridge
Hi All,
I''m using Shorewall 3.0.4 and I''m wondering if it is possible to do
traffic shapping on only one interface from a bridge.
The firewall has got 3 NIC, eth0, eth1, eth2.
eth0 and eth2 are bridged, but if I''m right, when you specify a traffic
rate for a link, you do it for the interface. In my case, eth0 and eth2
do not appear in the interface file, but it is
2006 Jan 29
1
Fwd: Re: Shorewall/Xen setup (correct from-address this time)
Rene apparently believes that I run a personal consulting service.
I don''t -- here is the response to my last post.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
2006 Feb 10
4
Transparent http proxy
Hi all,
I''m trying to set up a transparent proxy with dansguardian, and running
into some strange issues with the squid setup without dansguardian. I have
used shorewall for quite some time, and I''m stumped as to why I can''t get
this to work. Here is a brief synopsis of my network.
loc --> gateway/firewall--> net
I have the following policies:
#firewall to
2006 Mar 01
4
filtering HTTP signatures / headers ?
Is it possible to filter HTTP signatures/headers with
SHOREWALL ? or is there addon for it ?
take care
*º¤., ¸¸,.¤º*¨¨¨*¤ Stingray *º¤., ¸¸,.¤º*¨¨*¤
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
-------------------------------------------------------
This SF.Net email
2007 May 21
1
per user quota using LDAP entries
Hi List,
This is my first post to this list so please be gentle :-).
First of all, kudos to the developers of dovecot!
Im trying to implement quota, and I followed the instructions in the wiki.
My problem is the quota specified per user is not being honored, only the
global quota setting.
I do have an "quota = maildir:storage=204800" in the plugin area and enabled
quota in the
2006 Feb 20
2
Server with shorewall hangs - 2 ISP config
Hi all,
I''ve a little server, an old PIII 677 with Fedora Core 4, default kernel, and Shorewall 3.0.1. This pc is working fine, but I need to use a 2nd ISP connection; everything is working from configuration point of view, but the server, after a while (usually few hours), just hangs. Removing the 2-ISP configuration part, the problem is solved, so I''m quite sure that hangs are
2003 Aug 18
8
help with DNAT rule
Hi All,
The only Internet connection our LAN have is via a proxy server (remotely
located) which is in ZONE is defined as prox and in HOSTS defined as prox
eth0:<proxy_ip>
Local Area Network is defined in ZONE as net and HOSTS defined as
eth0:<ip_subnet>
Is it possible for shorewall to be a proxy server of the local area network
(net)?
and shorewall will then get the connection
2006 Jun 30
5
WG: OpenVPN question
Shorewall can run without openvpn, but you need it if you want to establish private networks through public structures.
-----Ursprüngliche Nachricht-----
Von: info@kws-netzwerke.de [mailto:info@kws-netzwerke.de]
Gesendet: Freitag, 30. Juni 2006 12:52
An: 'Shorewall Users'
Betreff: AW: [Shorewall-users] OpenVPN question
Shorewall is able to work with openvpn but it isn´t a bundle of a
2007 Feb 09
26
transient "martian source ..." errors
Hi All,
As you probably all know :-) I''m trying to do the multi-isp thing. I''ve
resolved my last issue with the route_rules as suggested by Tom and
Jerry suggested.
Lately I have been seeing "transient" (I say transient because the
problem will persist for a while and then magically clear itself up some
number of minutes later) situations where my gateway will log:
2006 Sep 14
5
Shorewall make my firewall fly!
I''ve just put in production a Linux firewall with 4 ethernet interfaces
and 3 openvpn tun virtual interfaces.
With Shorewall everything work like a charm (only a little hassle with
some details, due to bad configuration, not bugs!)
Great tool!
Tom and other Shorewall developers, you all are great!
Bye (and sorry for my bad english)
--
Paolo Basenghi - Centro elaborazione dati
2006 Mar 24
10
Multi-ISP with one Dynamic IP
I have two feeds, one with a static IP and one with a dynamic IP. How
can I configure a Multi-ISP setup with the dynamic IP, or can I? I don''t
think the gateway will change, just the interface IP.
--
Chris Mason
NetConcepts
(264) 497-5670 Fax: (264) 497-8463
Int: (305) 704-7249 Fax: (815)301-9759 UK 44.207.183.0271
Cell: 264-235-5670
Yahoo IM: netconcepts_anguilla@yahoo.com
--
2006 Sep 05
5
two-interfaces problem
When I install the two-interfaces files in /etc/shorewall on my FC-5 system
(with shorewall-3.2.3) and run "services shorewall restart" I get
------------------------------------------------------
cp -a interfaces masq policy routestopped rules zones /etc/shorewall/
...
[root@alfred shorewall]# service shorewall restart
...
Determining Zones...
ERROR: Zone fw is defined more than once
2006 Aug 23
5
OpenVPN and multiple ISPs
I have a server, server A, with three NICs: two to the Internet via
separate ADSL modems, and one to the LAN. The two ''net'' interfaces are
configured as described at http://www.shorewall.net/MultiISP.html. This
has been working for a number of months.
I am now testing an OpenVPN link between server A and another (currently
single-ISP) server (server B). I can establish the VPN