Thanks. Yes, I will be running squid on the same machine as shorewall. Are you saying that if I install squid, I wouldnt need shorewall anymore ? If yes, couple of things
a) I want to block all incoming ports from ppp(0,1,2..) to secure it b) I am trying to achieve a way to distribute the out going http, https traffic onto ppp interfaces. And from what read, squid isnt very good at that type of routing . So I thought I would use shorewall + squid. Any thoughts ? --- Simon Hobson <[EMAIL PROTECTED]> wrote: > java guru wrote: > > >internet(ssh,http,https)->router(traditional > >hw)->LAN(192.168.1*)->(eth0)Shorewall(ppp0,ppp1)->Internet > >(only http and https traffic out) > > I'll give you one simple question to think about ... > > supposing your cablemodem is 1.2.3.4 and someone > wants to send a > request to a server at 5.6.7.8. That request will > have a destination > address of 5.6.7.8, how do you think it is ever > going to get routed > to your box at 1.2.3.4 ? > > That is what I think you are trying to do. > > > Of course, you CAN make it work by using a proxy on > 1.2.3.4 so that > the requests all come to your box, but then you have > no need to route > ANY packet from the cablemodem to the dial-ups - it > is all traffic > from Internet to proxy, and from proxy to internet : > > internet(http,https) -> router(traditional hw) -> > LAN(192.168.1*) -> > (eth0)Shorewall -> Squid > > plus > > Squid -> (ppp0,ppp1)Shorewall -> > Internet(http,https) > > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get > the chance to share your > opinions on IT & business topics through brief > surveys-and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > __________________________________________________________ Yahoo! India Answers: Share what you know. Learn something new http://in.answers.yahoo.com/ ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
