similar to: Re: Shorewall router behind Shorewall fire

Dear Friends, I have been using shorewall for some years. I want to set up "shorewall 2" router behind firewall, accordind to this picture: I have lost at setuping "zone"-s (wifi, lan1, net). Plese help me ! Thanks, psw net | | SHOREWALL 1 ------- lan 1 | | |wifi | | SHOREWALL 2 ------- lan 2 | ---------------- lan 3

I would like to route ssh in my network via DSL2 and all other trafic via DSL1. So far I menaged to do it for LAN2 but there are still WLAN1,LAN3 and LAN1 to go. On all routers I added table "pilicka" with rule for fwmark and I fwmarked ssh. # ip rule show 0: from all lookup local 32765: from all fwmark 0x3 lookup pilicka 32766: from all lookup main 32767: from all lookup

I have the following situation: A Linux 2.4.22 server: Physical ethernet: lan1 - Ethernet port (Internet) lan2 - Ethernet port (Cisco Switch, Trunk port) Tunnel: tap1 - OpenVPN in tcp-server mode VLAN's: lan2.201 lan2.202 lan2.203 tap1.201 tap1.202 tap1.203 Bridges: br201 (lan2.201, tap1.201) br202 (lan2.202, tap1.202) br203 (lan2.203, tap1.203) On the other end, the same type of server:

On Thu, Mar 30, 2023 at 09:07:53PM +0200, Hans Schultz wrote: > Not true, it reveals that I forgot to put it in the patch, that's all. As > I cannot run several of these tests because of memory constraints I link > the file to a copy in a rw area where I modify the list and just run one > of the subtests at a time. If I try to run the whole it always fails > after a couple of

Hi, I have a little problem to setup iproute in my network It looks like this: ---- ----- ------ R1 R2 R3 ---- ----- ------ | | | | | | ------------------------------- ETH1 ETH2 ETH3 ETH0 ETH4 -------------> DMZ ------------------------------ | |

i am assigned a network to replace its "Windows server with ISA caching proxy" with another "debian linux with squid proxy" with both "linux" and "ISA" are completely differnet boxes. i am using linux 2.6 kernel since the linux server has SATA hard disks . the network has downlink with a penta@net DVB card for down-link ; then it''s connected

Hi Friends, I am running Centos 5 64-bit on a Dell sever. I am trying to configure iptables for smtp traffic for which I need some help/guidance. The scenario is like this: On a linux box we have 3 public ips(eth1,eth2 and eth3) and 1 LAN IP(eth0). 2 public IPs are from the same service provider and 1 is from different service provider. eth3 and eth2 are from the same public provider but

On Thu, Mar 30, 2023 at 22:27, Vladimir Oltean <olteanv at gmail.com> wrote: > On Thu, Mar 30, 2023 at 09:07:53PM +0200, Hans Schultz wrote: >> Not true, it reveals that I forgot to put it in the patch, that's all. As >> I cannot run several of these tests because of memory constraints I link >> the file to a copy in a rw area where I modify the list and just run one

Hi, I have a linux system which is router between several subnets (each also a different segment), in total 3 different lans, 2 dmz, and 4 internet connections, my default FORWARD policy is DROP, here is a simplified example of my config with only two lan segments and internet connection: Allow forwarding between lans -A FORWARD -s lan1/mask -j ACCEPT -A FORWARD -d lan1/mask -j ACCEPT -A

I''ve gotten the basic code working on my firewall. So that I can quickly get back online if I screw up, I''m currently calling it shorewall2. That way if it screws up I can just "shorewall restart". /sbin/shorewall2 -- command interpreter /etc/shorewall2/ -- configuration files /usr/share/shorewall2/ -- shared files Both Shorewall and Shorewall2 use the

On Thu, Mar 30, 2023 at 22:27, Vladimir Oltean <olteanv at gmail.com> wrote: > On Thu, Mar 30, 2023 at 09:07:53PM +0200, Hans Schultz wrote: >> Not true, it reveals that I forgot to put it in the patch, that's all. As >> I cannot run several of these tests because of memory constraints I link >> the file to a copy in a rw area where I modify the list and just run one

Hello, We have been using Samba 3.0.7 for almost a month now, and today marks the second time that I see a machine (one out of twelve on our network" that gives this error when I log in: "The system cannot log you on to this domain because the system's computer account in its primary domain is missing or the password on that account is incorrect." Last time this

Hello Samba experts, Please read all email because i'm desperate!!!!! I have problem on joining to LAN-s using Samba. Finally i got a solution to "see" booth workgroups on "Entire Network", but i'm having problem with stations located in LAN2. From any station located in LAN1, I can see LAN2 workgroup and the browse list with stations located in LAN2, but when

Hello, I have 2 ISP uplinks (zones: inet1 and inet2), each with a fixed IP on the outside and a routed subnet (/25 and /26) on the inside. So, behind the firewall i have 2 networksegments (lan1 and lan2) with public IP-addresses. The segments are completely isolated from eachother: hosts in zone "lan1" connect only to "inet1" and hosts in zone "lan2" only connect

Hi I wonder if you can help... I have setup shorewall(2.2.3) under debian on a machine that has 4 network ports... the idea is that there is 1 WAN port, 1 DMZ port, and 2 LAN ports, 1 LAN port has static NAT setup for selected incoming connection from trusted sources, and the second LAN port I am trying to setup using masq NAT as it only requires outgoing connections, no incoming. the static NAT

Hello, I have a problem with the following setup, I hope you can help me. I have two internet gateways, one for LAN1 and the second for LAN2. +--------------+ GW1 more eth0| |eth4(SNAT) GW2 ---...routers...-----+ router +----------------- | | +---+------+---+ eth1|

Hi I set-up a gre tunnel between two linux boxes. A short diagram is like this lan1 -> router1 ----- router2 <- lan2 The tunnel works fine, i can ping from lan1 to lan2 but the problem is the speed between lan1 and lan2 is lower than it supposed to be If i log in to router1 and transfer something from router2 or lan2 it is working at maximum speed, 1024kbits/s. The problem is if i log in

 Hello, everybody.  This one''s got me stumped.  What I''m trying to do is have two networks--192.168.1.0 and 192.168.2.0--with SMB and WINS running between them.  So far I can mount SMB shares allright, but I can''t browse by WINS names across the router.  I''ve posted this question on Linuxquestions.org; you''ll find the details there.  Here are my

Hello to everyone, Here is the situation: [LAN1]---[eth3]/----------\ | LinuxBR |[eth2]---[LAN0]---[linuxGW]---[internet] [LAN2]---[eth4]\----------/ Whole LAN is in subnet 10.0.0.0/24. So I need: LAN0, LAN1, LAN2 could not see each other. LAN0, LAN1, LAN2 is in same subnet (10.0.0.0/24). All LANs have to get only internet. How can I configure LinuxBR to do so?

Hi samba members, I've searched through google, the archives and RTFM but I can't figure this out. I've got a setup of two different offices with both their own samba PDC, wins, etc. Via OpenVPN i've set up an interdomain trust between the two domains (for now one way, but this will become two ways). One domain is called PSW with bluemoon as PDC, the other PSWINDWG with redmoon as