similar to: Shorewall 1.4.0 RC3

Hi! Can I use the old version shorewall 1.2.12 configure as SNAT and DMZ ? Because Debian Linux came with the default shorewall 1.2.12 . Best Regards, Support

Hi Tinc Mailing-Group, I am a bit stuck with firewalling rules at the moment. Maybe someone could please advise me a good rc.firewall script to use on my setup. If anyone runs an ipchains firewall script on their linux box which is ALSO running tinc, could they please mail it to me, for my perusal. I have tinc pre3 set up and working on my systems, however I can only get it to work if I set the

CentOS is 15 years old today! Hear the story from some of our community members at https://blog.centos.org/2019/04/centos15-2/ Do you have your own story? Drop me a note - rbowen at centosproject.org - to tell me about it. -- Rich Bowen - rbowen at redhat.com @CentOSProject // @rbowen 859 351 9166

Is the Shorewall.net down ? Regardless of page I get a "connection refused" - Bill

Hi, I''m running a Debian 2.2r2 on a university server with 3 public ip on one ethernet card (but soon we will have three cards). There''s a tunnel (implemented with vtund on a tun interface with local address 192.168.1.10 and remote 192.168.1.20) from this server to another server without public ip and behind a router. I wanted to make the second server visible to the world, so

----------------------------------------------------------------------------- Shorewall 1.2.12 # uname -a Linux yoreach 2.4.18 #1 Sun Apr 21 12:50:34 CEST 2002 i686 unknown # ip addr show 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo 2: dummy0: <BROADCAST,NOARP> mtu 1500

I have tried to replace these lines from ipchains to work with shorewall. # /NFS requires 111/tcp (sunrpc/portmapper) and *all* UDP ports./ # ipchains -A input -p tcp -s $SUBNET -i eth0 -d 0/0 111 -j ACCEPT ipchains -A input -p udp -s $SUBNET -i eth0 -d 0/0 -j ACCEPT # /These ports are required by bootp, tftpd, and PXE./ # /There are also a handful of udp ports that need to/ # /be open,

Excuse me form reposting the quesiton, but I didn''t find any solution. Any suggestion is welcome Hi, I''m running a Debian 2.2r2 on a university server with 3 public ip o(1.1.1.1 2.2.2.2 and 3.3.3.3 on one ethernet card (but soon we will have three cards). There''s a tunnel (implemented with vtund on a tun interface with local address 192.168.1.10 and remote

Hi, i have a following problem. Looks like this ROUTER --------------DEF.GWa aaa.aaa.aaa.aaa | DEF.GWb bbb.bbb.bbb.bbb | ---------------- -------------------

Hi I am looking at converting a Linux terminal server box to iptables using Shorewall 2.0. (At the moment it uses ipchains). The server currently has scripts which are called as each user logs in which run a series of "ipchains" commands to set the access rights for that user (and again to cancel them when the user logs out). My plan is to replace these scripts with ones that call

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The server rebuild was a complete failure. For some reason, neither FC3 nor SuSE 9.2 like the graphics card in the box. I have reinstalled the old hard drive and the server is back on line. - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net

On my windows machine I use a software fire will called ZoneAlarm. One feature I like Is the ability to block applications from using the net. I''ve looked with Shorewall and wonder if it does, or was ever meant to. Not a complaint, a curiosity. Kev -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 1572 bytes

Hi everyone, I have a question regarding the default gateway for hosts on DMZ zone. I moved servers from parallel to the DMZ (outside the firewall, directly connected to I-net) to inside DMZ. The default gw for these servers was the DSL router(bridge) of my ISP. What should be the default gw (for the hosts inside the DMZ), when hosts are inside the DMZ now - still the DSL router (external

hi all iam newbee, i ve install shorewall 1.3.11 on mandrake 8.2 , i ve eth0 with local ip 192.168.40.40/21 and eth1 203.128.65.22/255.255.255.248 the problem is when my client try connect to internet the page cannot be displayed and while client try ping to internet address reply from 192.168.40.40 destination net unreachable why it can happend ? anyone can give me a hand

Hi All I have had a look through the documentation but I can''t see how to do this. I want to setup DNAT for an incoming connection. The connection must be forwarded to a server on a masqueraded server behind the firewall. The tricky part is I need to forward to a different port to the one that the request arrived on. I can do this: firewall.public.ip:5800 ->

Hi, I have a 3 interface FW like this: http://shorewall.greshko.com/GSLUG_files/slide0008_image004.png where I use PROXYARP to give the servers in DMZ an IP from our public IP range. A bit like this: http://shorewall.greshko.com/GSLUG_files/slide0042_image026.png proxyarp: xxx.23.52.145 eth1 eth0 - yes xxx.23.52.146 eth1 eth0 - yes xxx.23.52.147 eth1 eth0 - yes xxx.23.52.148 eth1 eth0 - yes

Thanks to Francesca Smith, the sample configurations have been undated for 1.4.0 and are now available at: http://www.shorewall.net/pub/shorewall/Beta/Samples Thanks Francecsa!! -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net

I am very new to Asterisk, it was a weekend project of mine that I jumped into this weekend. I have it up and working on a box at home, and I am nearly half way through the book I purchased friday "Asterisk: The Future of Telephony 2nd Edition". Anyway, I started this out so I could help a friend who wanted a VoIP PBX solution for his small business. I have been working with Cisco

Hi all! I try to make port based routing, because a have two connections to the internet. My router is a "one disk floppy router for linux". It is a big router project www.fli4l.de. I try also to make a opt, it is like a plugin for this router. This project uses Kernel 2.2.19 compiled with libc5 (because it is small and you can use one floppy disk). At the moment, iproute2 is not

I am having some trouble creating a hierarchy of virtual classes (akin to the class structure in the 'Matrix' package). I think they arise from my not understanding the best way to specify virtual subclasses of a virtual class. please see questions below code. setClass("mom") setClass("kid1", representation("mom", "VIRTUAL"))