similar to: WG: NAT Issue

net dmz:192.168.0.1 tcp 80 I forgot to mention that this should be put to rules file, sorry. _____ Von: Michael Weickel - iQom Business Services GmbH [mailto:mw@iqom.de] Gesendet: Dienstag, 2. Februar 2010 17:37 An: ''Shorewall Users'' Betreff: AW: [Shorewall-users] Suddenly DMZ can''t access to internet No. For

OK - I figured out what it is but maybe someone can give an explanation here. If I use he multiple zones configuration I have to do in addition Hosts v3005 vlan3005:0.0.0.0/0 And of course this seems to be very logic since this means all ip´s on the internet. But I am still confused a lot why this is the first time I have to do it after using Shorewall over years without to be forced to say

Hello We are using old version ( shorewall-3.0.7-1) with Centos 5.3 The shorewall has three zones (net / loc / dmz). Loc can access to internet with no problem and can access to DMZ. DMZ can''t access to internet. Net can''t access to DMZ with NAT. I tried to restart the machine / check Lan card / check cable , they were work find. Is it DMZ Lan card problem? but it can

Hi, I have a client behind shorewall which has 2 IP: 192.168.8.35 is the real IP and 192.168.8.37 is the virtual IP. I have added DNAT rules into shorewall: DNAT net loc:192.168.8.35 tcp 11008 - 1.2.3.4 DNAT net loc:192.168.8.37 tcp 55000 - 1.2.3.5 1.2.3.4 and 1.2.3.5 is virtual IP

Hi, I have 8 ethernet cards installed. Is it possible to use eth0-eth6 as the net interface for shorewall and eth1 as the lan network? Thanks. sangprabv sangprabv@gmail.com ------------------------------------------------------------------------------

Hey guys, I have a question regarding shorewall and vrf functionality. I have shorewall 3.4.8 and kernel 2.6.24-gentoo-r8 I have tried to use iproute2 (ip route and ip rule) to establish multiple routing tables. The biggest problem seems to be, that I cannot add interfaces such as vlan interfaces to the routing table. My target is that linux takes attention of on which vlan interface

Hi list, is it true that Shorewall is not willing to forward traffic from a source-ip which is not reachable by a static route from Shorewall itself? To say it on another way. If Shorewall´s routing interface is neither connected nor able to reach that source ip does it forward or deny it? So the situation is the following. I send from an ip which is not part of interface nor hosts file. But

Dear Sirs, I try to setup a quite complex routing scenario with iproute2, shorewall, bonding and hundrets of vlans as well as a lot of different virtual routing tables. In the past it was often possible to get great support directly by shorewall list but since the routing becomes more complex I do see a need to have a brief consulting by an experienced engineer. Shorewall list recommended me

Hello, If my AD will only provide service for machines with windows operating system I can use the *idmap config ADDC: backend = ad*, correct or did I get it all wrong? For both unix and windows machines I need *idmap config ADDC: backend = rid* ? Other question. *Wiki Prerequisites says:* "Users must have at least the uidNumber and groups the gidNumber attribute set. When using the

I''m playing around with VLAN''s and I have a VLAN capable (layer 2) smart switch. I see a steady stream of martians in the logfile if I have the routefilter option set on the loc zone interfaces in /etc/shorewall/interfaces. I have two interfaces in the loc zone, eth1 and vlan2 respectively. vlan2 is an 802.1q trunk going towards the switch. Is this the expected behavior in

> > Yes, you have got it wrong ;-) :( If you do not want to add anything to AD, then you use the 'rid' > backend and 'ID' numbers will be calculated for you. You will also have > to place 'template' shell & homedir lines in smb.conf > If you want/need some of your users to have different login shells or > home directories, you will need to use the

Hello everybody, I am not sure which DNS setup will fit best for my suites. I can imagine, that there are a lot of users out there using also BIND9 servers in their environment and can share their experience. In my case I am running following setup: I have two existing hosts running with DNS and DHCP services. I have setup a DHCP-Cluster with isc-dhcp-server on both machines, that means I have a

I´ve figured out the following. I am able to sftp from shorewall 2.4.2 left vpn gateway x.x.x.14 (DMZ) to shorewall 2.4.1 fw x.x.x.11 with /etc/shorewall/proxyarp x.x.x.14 eth2 eth0 No very well. That´s not through a tunnel (of course a ssh tunnel, but no vpn) but with public ip x.x.x.14 to x.x.x.11 If I try to sftp through the fw to the public internet I have the same

For all running in the same error: This solved my problem. In smb.conf --> interfaces = eth0 And all is up and running perfect!! Daniel ----------------------------------------------- EDV Daniel M?ller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 T?bingen Tel.: 07071/206-463, Fax: 07071/206-499 eMail: mueller at tropenklinik.de Internet: www.tropenklinik.de

Hello to all, does anybody know about the status of clustering samba4 with ctdb? Daniel EDV Daniel M?ller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 T?bingen Tel.: 07071/206-463, Fax: 07071/206-499 eMail: mueller at tropenklinik.de Internet: www.tropenklinik.de

_____ Von: Pascal Speck [mailto:p.speck@ewersbach.net] Gesendet: Montag, 5. September 2005 10:37 An: 'asterisk-users@lists.digium.org' Betreff: Timeout when Dialing - HELP When i try to do a call I get this message after a few seconds: I IND :TIMEOUT pid:1 mode:NT addr:51400102 port:2 --> l3id:10040 cause:16 dad:800759 oad:20 channel:1 port:2 --> lib: prim 34582

[This email is either empty or too large to be displayed at this time]

Pohle at logistik.tu-berlin.de make ; make install Von Samsung Mobile gesendet -------- Urspr?ngliche Nachricht -------- Betreff: [Announce] Samba 3.4.15 Available for Download Von: Karolin Seeger <kseeger at samba.org> An: samba-announce at samba.org,samba at samba.org,samba-technical at samba.org Cc: ================================================================= "Some

No ideas? > -----Ursprüngliche Nachricht----- > Von: Bernd Adamowicz > Gesendet: Montag, 16. April 2012 13:32 > An: ''puppet-users@googlegroups.com'' > Betreff: Could not send report: Error 400 on SERVER: execution expired > > Hi all! > > One of my Puppet masters has to compile some 3800 stored configurations > which takes a very long time to

Again me, got a log file too (forgot to add it). Made that one while trying to get groups from that user (used winbindd -d 10 -i). Hope anyone can help me with that, for I really don't know what to do anymore. Regards, Jens -----Urspr?ngliche Nachricht----- Von: Altrock, Jens [mailto:Jens.Altrock@STADT-NW.DE] Gesendet: Donnerstag, 5. August 2004 10:04 An: Samba Mailing List (E-Mail)