--On Friday, November 22, 2002 09:28:32 AM -0800 Jeff Newmiller <[EMAIL PROTECTED]> wrote:
If you do set up a separate zone for these hosts, be sure that the short name is 5 bytes or less in length -- e.g., in /etc/shorewall/zones:I am not certain of the following, but I don't see much to do except tell shorewall the interface is there./etc/shorewall/interfaces: net eth2 - routefilter You don't want to masq on eth2, because the ISDN router is already doing that. You could setup a new "Oracle" zone, and limit your connections through it by editing /etc/shorewall/policy and /etc/shorewall/rules, but as I said above, I find it hard to believe you would want to treat such a large number of ip addresses as anything different than "net".
#ZONE DISPLAY DESCRIPTION
orl Oracle Oracle Server Zone
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://shorewall.sf.net
ICQ: #60745924 \ [EMAIL PROTECTED]
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
