On 6/26/06, Leo Alvyn 'Vynnie' Cruz <[EMAIL PROTECTED]> wrote:
you can use a dedicated firewall solution like monowall and ipcop to minimize your headache configuring your dmz + lan + internet
HTH
Hello Folks,
I'm having a network problem right now with my firewall. Would
like to seek your expertise on this matter.
Given:
INTERNET
|
DSLMODEM
(public ip) 10.10.10.177/255.255.255.248
|
LINUXFIREWALL
(untrusted) - eth0 10.10.10.178/255.255.255.248
(dmz) - eth2 10.10.10.179/255.255.255.248
|
DMZHOST 10.10.10.180/255.255.255.248
Routing in LINUXFIREWALL is as follows:
Destination Gateway Genmask Iface
0.0.0.0 10.10.10.177 0.0.0.0 eth0
10.10.10.176 0.0.0.0 255.255.255.248 eth0
10.10.10.176 0.0.0.0 255.255.255.248 eth2
10.10.10.180 10.10.10.179 255.255.255.255 eth2
Routing in DMZHOST is as follows:
Destination Gateway Genmask Iface
0.0.0.0 10.10.10.179 0.0.0.0 eth0
- I can get to LINUXFIREWALL from the world and vice-versa.
- net.ipv4.ip_forward is already enabled (1)
- No NAT for DMZHOST in LINUXFIREWALL
- From DMZHOST, I can ping out but the ping reply
could not reach DMZHOST.
- Just as the ping goes, so does any other service.
you can use a dedicated firewall solution like monowall and ipcop to minimize your headache configuring your dmz + lan + internet
HTH
--
V irus
I nstability
S pyware
T rojans
A dware
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
