similar to: Proper setup for a router with 2 interfaces and a bridge on one?

I''m trying to get TPROXY / Squid running and I have a few questions... I found this page: http://www.shorewall.net/Shorewall_Squid_Usage.html#TPROXY However, it doesn''t explain what I''m seeing in the configuration. For the zone file, do I keep my loc and net configurations and just add the following to the file? - lo - - or do I remove the loc and net zones and

I have been using shorewall for years with ipsets. I have encountered a problem after upgrading from 4.2.11 to 4.4.10. When I run ''shorewall-check'' or ''shorewall start'', it halts with the error: ---------------------------------------------------------------------- ERROR: ipset names in Shorewall configuration files require Ipset Match in your kernel and

I have this rule in place: -------------------------------------- DNAT net dmz:10.0.0.7 tcp 80,443 - 94.23.242.44 -------------------------------------- When I change this policy: -------------------------------------- net dmz DROP -------------------------------------- to: -------------------------------------- net dmz DROP info

Hi, I have two public ip''s and i want to dedicate one ip for incoming and outgoing to one server. I followed http://www.shorewall.net/shorewall_setup_guide.htm and used the example of the daughter system. I have a machine connected on vmbr0 with address 10.10.10.1 listening on port 80 www. Still I can''t connect to this system. I''m forgetting something? Sincerely,

Hi, I have a few questions about the inner workings of netfilter (a graphical layout of my network setup @ https://aequorin.homeunix.net:62389/local/media/network-graph.png) 1) These are the syslog entries for some simple connection tests. Shorewall/netfilter has been set to record all stateful connections SSH is recognized as phys(eth0) -> $FW traffic. This is because PHYSIN is

Hi all. I have currently an OpenVZ server: uname -a Linux vader8.superhost.pl 2.6.32-042stab055.16 #1 SMP Fri Jun 8 19:22:28 MSD 2012 x86_64 x86_64 x86_64 GNU/Linux cat /etc/redhat-release CentOS release 6.2 (Final) lspci | grep -i eth 01:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet controller (rev 03) cd /etc/sysconfig/network-scripts

Hi everybody. I''m trying to configure shorewall folowing this manual: http://www.montanalinux.org/proxmox-ve-with-shorewall.html But with shorewall check it tells me thah: Checking /etc/shorewall/interfaces... ERROR: Unknown zone (dmz) : /etc/shorewall/interfaces (line 16) How can I define it in the zone file? thanks for the help. best regards, Santiago.

Hi all, I have a strange problem with GPL PV 0.8.8 (0.6.4 did work). On my 2nd vif I cannot establish TCP connections. The 3rd IP packet (ACK from XEN-Image) is not forwarded by XEN/DOM0-Bridge. If I boot Windows without /GPLPV option, everything works fine. I did some investigation and found out that the packages arrive differently if GPLPV is enabled. "br_inet" is a bridge

>>> Hi all >>> >>> Thanks to Milan I am able to get further with xen and reiser4 >>> >>> - In swap line 6 and 7 status_flags.c >>> >>> #include <linux/bio.h> >>> #include <linux/page-flags.h> >>> >>> >>> - PACKED is redefined, but the definitions are the same, so the gcc >>>

Hello everybody, I have an odd problem with iptables using a Xen bridge setup. I don''t know if it would be better to post to netfilter Mailing-List. But I hope someone here know how to solve it. If it''s OT here, please let me know. I''ll try to do a little bit ASCII-Graphics to explain the topo better: _________ ________

Hello All, I am trying to implement OpenVPN on Fedora core Linux 3 with the latest pathces installed. This server is used only as firewall/internet gateway/proxy/VPN server, with kernel 2.6.1-1.27.FC3 and kernel 2.6.1-1.27.FC3 SMP It has two NIC''s eth0 (10.0.0.150) connected to ADSL, eth1 (192.168.3.12) connected to the local network. I use shorewall 2.4 on this machine. I like to test

All- I''m wondering if there is a guide or a general Getting Started for porting Xen to different architectures. I''m interested in supporting the arm platform. Any help or direction is greatly appreciated... Thanks! Carl - -- "There are 10 types of people in the world: Those who understand binary and those that don''t."

From sf.net/xen I have obtained xen2.0 and brought xen2.0 stable up on FC2. I am trying to find out a way to obtaining a tar file of xen2.0testing, without bk. I may have overlooked something here, helpful corrections solicited. Thanks in advance. -- Woody Marvel LTC Open Source Projects tel: 503-578-3833/775-3833 email: marvel@us.ibm.com

Changes in xen/arch/x86/domain.c in 2.0.2 break comiple for me with: ld --oformat elf32-i386 -T x86_32/xen.lds -N \ boot/x86_32.o /home/root/xen-2.0/xen/common/common.o /home/root/xen-2.0/xen/drivers/char/driver.o /home/root/xen-2.0/xen/drivers/acpi/driver.o /home/root/xen-2.0/xen/drivers/pci/driver.o /home/root/xen-2.0/xen/arch/x86/arch.o -o /home/root/xen-2.0/xen/xen-syms

Is there a way to discovery how much free memory I still have to use in a new domain? Another question is about cpu usage. I guess that xen scheduler allocate a fixed time slice for all virtual machines and does not make any idea if the virtual machine is using or not using all this time, right? How I can identify if CPU is the bottleneck? Thanks! -- Flávio Bruno Leitner

hi, am starting to play with XEN - the virtualisation project (http://xen.sf.net). i''ll give some background first of all and then the question - at the bottom - will make sense [when posting to lkml i often get questions asked that are answered by the background material i also provide... *sigh*] each virtual machine requires (typically) its own physical ram (a chunk of the

Dear All, I try to upgrade, my old shorewall from 4.4.13-3 to 4.5.2.3-1 on CentOS, after upgrade i can''t start shorewall with this message: "/Shorewall: Address Ranges require the Multiple Match capability in your kernel and iptables/" I try to search on the net about this, but no still no light. Somebody can help me? Great appreciate for any help. Regards,

Hello there, I am looking around for days where I can dig some information on how to build Xen on FreeBSD... Does anybody here have any good doc / pointer on how to find it... BTW on xen-unstable there no FreeBSD tree... ? ;( where is it then ? Many thanks /Xavier -- Xavier Beaudouin - Unix System Administrator & Projects Leader. President of Kazar Organization : http://www.kazar.net/

The bridging documentation (http://shorewall.net/2.0/bridge.html) has been expanded and there is a refresh of the bridging code (ftp://shorewall.net/pub/shorewall/Bridging and http://shorewall.net/pub/shorewall/Bridging). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net

hello before asking my question I come My name is Santiago and I''m from Spain but I''m in Colombia I followed this guide: https://www.doas.montanalinux.org/proxmox-ve-with-shorewall.html but when I run shorewall check, this error occurs: Checking... Initializing... Determining Zones... IPv4 Zones: net loc Firewall Zone: fw Validating interfaces file... ERROR: Invalid