Wim Dieke <[EMAIL PROTECTED]> writes: > Florin wrote: > > >Wim Dieke <[EMAIL PROTECTED]> writes: > > > > > >>Hi, > >> > >>I'm having a bit of troubles getting the bridging (transparent) mode > >>running on MNF. I defined a bridge on 2 interfaces, one being the local > >>net and one being the router/modem to the internet. The local net has > >>10.0.0.0/24 , the router gateway is 10.0.0.138 and the firewall bridge br0 > >>has ip 10.0.0.202 > >>a third interface has 192.168.0.2 as ip, and is connected to a management > >>pc, on wich the "lan" zone has been defined. The br0 has "dmz" as zone > >>Now, how can i get traffic from the local net to the internet ? > >> > > > >do you really need a bridge in your case ? If so, you can have a look at > >the examples from shorewall.net web site ... if you don't manage, post > >your shorewall configuration here ... and we'll sort things out ... > > > >have a nice day, > > > > Yes, i do need the bridge. I apologize for the confusion but the IP > adresses being in the private range. It was my test environment for the > firewall system. In real life the firewall would act as a transparent > firewall in front of several public IP servers. With the help of shorewall > website i figured out that the hosts file needed a br0:eth0 and br0:eth1 > entry (cannot do this on the gui apparently). Then you can set the wan > alias to br0:eth0 and the dmz to br0:eth1 and configure the rules in the > gui.
If you need something like: wan br0:eth0 in the /etc/shorewall/hosts file simply use the web interface: Zone: wan Interface: br0 IP or interface: eth1 simply my lates packages that I will upload in a moment. > So the only adjustment i needed to make that couldn't be done on the gui > was the host file edit. Would be nice to have though :). have a nice day, -- Florin http://www.mandrakesoft.com http://people.mandrakesoft.com/~florin/
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
