On Thu, 25 Jul 2002, Charles Steinkuehler wrote: > > If you're actually using bering, ignore all of the above, and start > searching for shorewall documentation :) >
For Bering/Shorewall: 1) You'll need to add the ppp interface to /etc/shorewall/interfaces. I suggest that you just make it part of the local zone unless you have different policies for the 192.168.0.0/24 and 192.168.2.0/24 networks. Assuming the ppp interface is ppp0: loc ppp0 - 2) To enable 192.168.2.0/24 to talk to 192.168.1.0/24 and vise versa, you'll want to add this to the /etc/shorewall/policy file. loc loc ACCEPT Be sure that you place that policy before the "all all REJECT" catchall policy at the end. 3) You'll have to set up the routing correctly -- that's done outside of Shorewall in your /etc/ppp/if-up.local script. In that file add ip route add 192.168.2.0/24 via $5 dev $1 -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by: Jabber - The world's fastest growing real-time communications platform! Don't just IM. Build it in! http://www.jabber.com/osdn/xim ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
