similar to: two firewall and shorewall

My mission is to get one * box to dial another * box' extensions. I have set this up previously without any issues by making a simple IAX trunk/extension pair on the two boxes and create a dial plan with a prefix like 9|XXX to select an extension on the other box. My problem is that I now have to do this with extremely restrictive firewalls thrown into the mix - firewalls I have no control

Hi all, I some vlan routing problem, I''m using a linux box with an 8021q kernel. I have connect eth2 ethernet controller from linux box to a switch port that carry for vlan tagged as 2 3 4 5, I''m able to connect to the internet from vlan but not to route traffic between vlan, this is the output of ifconfig -a: eth0 Link encap:Ethernet HWaddr 00:A0:24:50:E5:B2

I don't get this. I am using a freshly installed copy of Fedora 19 and starting up glusterd for the first time. The goal is to have a replicated directory on two systems. But for right now, I can't even start up the glusterd daemon right out of the box. Trying to follow the Quick Start directions at http://gluster.org/community/documentation/index.php/QuickStart is, well, challenging.

Hi, I hope this is not OT. I searched through the archives but didn''t find anything really answering my question. I want to create a cluster of two firewalls with Linux-HA so that if the primary fail, the secondary firewall will take over. Note that I don''t care about syncing states between firewalls, they will just have to reconnect :) It''s a typical

Hi Everyone, In my HVM guest''s config file, I have given my guest 3 interface. I have called them fw1, fw2 and fw3. I have joined each interface to a bridge on the Dom0. This does appear when I do a "brctl show". However, there are 3 other interfaces also added called tapx.0,tapx.1 and tapx.2 (Where x is the domain ID for the guest). Furthermore, I am only able to run

Hello everybody: Here is my "network layout": ISP1 ISP2 | | | | +-----eth0---------eth1------+ | | | FC 3 box | | | +-----eth2---------eth3------+ |

Hi, I have a simple question. I have my firewall with 2 external Ip and 1 lan. For example ISP1 FW LAN----Mail Server ISP2 Ok, when i DANT the smpt port to my mail server, I can see that the conection in my mail server comes from the external IP of my ISP. I need to change this so the conection to my mail server cames from the LAN IP from my firewall Is this possible?

Hello List: Recently our shorewall FW server went dead (PS failure) & brought the entire system down. Luckily we are testing the FW and other servers, so we did not loose anything. Now we have decided to setup two Shorewall FW servers with a primary & another fallover FW server. I have done some research cruised the Internet and found that a product ''UCARP''

Hi, I''m seeking advice for the following setup. Shorewall 2.2.2, debian/sarge on Soekris net4501 boards. We have two ISP feeds (let''s call them ISP-1 and ISP-2) and get 8 static IPs with each feed. The plan is to have the publicly accessible servers sitting in the DMZ connected to ISP-1. Our local intranet (LOC) will be connected to ISP-2. There will be 3 firewall/routers: fw1

I just tried to set up a tinc test installation, but I guess I did something wrong, because I can only ping one direction. Here's my setup (lan1,192.168.99.0)<-->firewall1<-vpn->firewall2<-->(lan2,192.168.100.0) firewall1 has tap0 on 192.168.88.2 firewall2 has tap0 on 192.168.88.3 i set up the following routes : on firewall1 : 192.168.100.0 gw firewall2(192.168.88.3) on

I have this configuration: UA1 ---> FW1 ---> Asterisk ----> FW2 --> Internet --> UA2 UA has provate address (192.168.x.x) Asterisk has public address I want to be reach somebody at the internet. My idea was that asterisk works as a Proxy. Then i would have a SIP/RTP connection between UA1 and Asterisk and an other SIP/RTP connection between Asterisk and UA2. (asterisk is

Hi to all, +-------+ eth1 +-------+ | |==========| | ''network 1'' ----| A | | B |---- ''network 2'' | |==========| | +-------+ eth2 +-------+ A and B are routers # tc qdisc add dev eth1 root teql0 # tc qdisc add dev eth2 root teql0 # ip link set

Hi, I have an DNAT ISSUE with PREROUTING. This is my setup. I have 2 firewalls running iptables. Pls asume 1.2.3.4/29 is the internet interace of FIRST firewall. 2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in that DMZ zone, mail server runnig @ 192.168.100.3 Now I want to DNAT port 25 of FISRT firewall ( i.e - its ip address - 1.2.3.4/29) to the internet ip

Hi, I am migrating from one ISP to another, and would like to run both simultaneously for a while. So: (both netmask 255.255.255.248) [ISP1] 24.106.62.180 [ISP2] 209.181.237.230 | | | | \ / -----[ HUB ]----- | | -------- eth0 --------- | Linux FW/Server | ---------eth1 --------- | | [ HUB ] | 10.0.0.x/255.255.255.0 The default IP on

Hi All, 3.4.0 and 3.3.2 releases of GlusterFS are now available. GlusterFS 3.4.0 can be downloaded from [1] and release notes are available at [2]. Upgrade instructions can be found at [3]. If you would like to propose bug fix candidates or minor features for inclusion in 3.4.1, please add them at [4]. 3.3.2 packages can be downloaded from [5]. A big note of thanks to everyone who helped in

Hello all, I need a virtual firewall/router solution. I''m thinking of a netscreen 1000 but I want to know if it can be done in Linux. Here is my idea: 1 Linux box 2 GigE interfaces 1 interface setup with a public IP address ($PUBIP) 1 interface setup with 802.1q VLAN trunking with 100 vlans assigned ($VLAN1-$VLAN100) a /25 subnet routed to $PUBIP from my core routers All $VLAN

Hi, Does anyone have experience using IPSEC on CentOS in order to connect to vendor IPSEC-based VPN products (specifically Checkpoint FW1) ? Is the included IPSEC implementation sufficient, or do people have to rely on OpenSWAN or FreeSWAN ? I'd be testing tomorrow and I'm interested with experiences others have had and things to look out for. Thanks in advance, -- dag wieers, dag

Hi all, In order to get icecast working i found that i had to install libao-0.8.4 libogg-1.1 libvorbis-1.0.1 flac-1.1.0 speex-1.0.3 vorbistools-1.0.1 icecast-2.0.0 So i grapped the source files. I copied all the files to an 32-bit Intel machine, and *there* all files configured, compiled and installed OK But on the intended target machine (SUN blade server) i have a problem... libao and libogg

Hi all! I'm trying to use my first-ever firewire device, and just OOB I'm not getting very far, so advice would be appreciated. When I plug in the device I see some entries in /var/log/messages: Jul 27 14:50:30 fcshome kernel: firewire_core: phy config: card 0, new root=ffc1, gap_count=5 Jul 27 14:50:31 fcshome kernel: firewire_core: created device fw1: GUID 0003f300118123f9, S100

Hi, I have a setup that consist of 2 firewalls connected over dialup and PPP. Each side of the ppp are protected by shorewall. One side of the PPP masquerades everything not addressed to the local network to its eth0 (the net). fw1 <---- ppp (dialup) -----> fw0 <----- NET When making an http request to a site on the Internet from the machine not directly connected to the net (fw1), the