Re: [Shorewall-users] one to one DNAT to a machine from NET running on a LOC network

2018-02-09 Thread Tom Eastep
On 02/09/2018 05:58 AM, Zenny wrote: > > BTW, how can I let users from outside (net) to access ( eg. > ssh/http/https) to a VM instance running in loc zone? In the > /etc/shorewall/policy,  net2loc is a REJECT by default. > > You must use DNAT rules. -Tom -- Tom Eastep\ Q: What do

Re: [Shorewall-users] one to one DNAT to a machine from NET running on a LOC network

2018-02-09 Thread Zenny
On Thu, Feb 8, 2018 at 9:11 PM, Tom Eastep wrote: > On 02/08/2018 10:52 AM, Zenny wrote: > > On Thu, Feb 8, 2018 at 5:22 PM, Tom Eastep > > wrote: > > > > On 02/08/2018 02:07 AM, Zenny wrote: > > > Hi, > >

Re: [Shorewall-users] one to one DNAT to a machine from NET running on a LOC network

2018-02-08 Thread Tom Eastep
On 02/08/2018 10:52 AM, Zenny wrote: > On Thu, Feb 8, 2018 at 5:22 PM, Tom Eastep > wrote: > > On 02/08/2018 02:07 AM, Zenny wrote: > > Hi, > > > > I am trying to figure out to establish one-to-one NAT to a single > >

Re: [Shorewall-users] one to one DNAT to a machine from NET running on a LOC network

2018-02-08 Thread Zenny
On Thu, Feb 8, 2018 at 5:22 PM, Tom Eastep wrote: > On 02/08/2018 02:07 AM, Zenny wrote: > > Hi, > > > > I am trying to figure out to establish one-to-one NAT to a single > > development VM instance running in LOC network to cater it as if it is > > in the DMZ network. > >

Re: [Shorewall-users] one to one DNAT to a machine from NET running on a LOC network

2018-02-08 Thread Tom Eastep
On 02/08/2018 02:07 AM, Zenny wrote: > Hi, > > I am trying to figure out to establish one-to-one NAT to a single > development VM instance running in LOC network to cater it as if it is > in the DMZ network.  > > Appreciate your inputs. Thanks.  > I don't understand completely what you are