--On Saturday, January 11, 2003 05:21:22 PM -0800 Craig Caughlin <[EMAIL PROTECTED]> wrote:
Please CAREFULLY read the material referenced below -- this question is answered.Hi folks! I have carefully read Tom's Shorewall guide, but have a couple of questions. First, when you set up a DMZ with Bering / Shorewall, are boxes within the DMZ "completely unprotected" in that they have no ipchain rules, etc. that "protect" them (even if to only a small degree)...or are boxes in the DMZ pretty much completely open to attack?
Craig,Second, I noticed that Tom has made a three-interfaces.tgz file that (apparently) has all of the necessary files / modifications within it. Is that really all I need to do to set up a basic DMZ?, i.e copy the files within .tgz package over to Bering and backup?...that sort of thing? Thank you, have a great weekend!
For a basic DMZ setup, you should be looking at http://www.shorewall.net/three-interface.htm.
The Shorewall Setup Guide (http://www.shorewall.net/shorewall_setup_guide.htm) is for users with multiple public IP addresses or those who really want to understand what's going on and who don't want to use the sample configurations.
This is hopefully made clear at http://www.shorewall.net/shorewall_quickstart_guide.htm.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.sf.net
Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
