Johannes Graumann wrote: > Hi all, > > I have an issue about which I'd like to probe the very knowledgeable > shorewall community ... > I have a Debian unstable box with two NICs, of which one connects to > the Internet (eth1) and one to a private LAN(eth0). I have used > shorewall according to http://www.shorewall.net/MultiISP.html to sort > our routing between the two. It seems to work fine - at least to the > extend of my probing using tcpdump: packets show up through the > correct interfaces. I have attached the dumps requested on the > troubleshooting page in any case ...
Why are you trying to use a multi-ISP setup for what appears to be a very vanilla two-interface firewall scenario? Is there really a path to the internet via 10.31.0.1? > The trouble I have now is how to deal with the need for different > nameservers for both net-parts in a lean manner and would highly > appreciate, if people could point me into the right direction on how > to make that work. I'm trying dnsmasq with the no-resolv option and > subnet-specific nameserver assignments right now, but that doesn't > seem to work reliably. > If you encountered this problem yourself: please let me know how you > solved it. The Shorewall setup guide shows how to configure Bind 9 to do exactly what you want (I think it's what you want, anyway). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
