Rob Morin wrote: > yes i agree, i rather not use NAT, but how do i configure Megs to > redirect http traffic to another host on the same network with one NIC?
We've already told you how to do that. You follow Shorewall FAQ 2 but rather than use the 'loc' zone as described in the FAQ, you use the 'net' zone. Summary: a) Set the 'routeback' interface option on the one NIC in /etc/shorewall/interfaces. b) Add the appropriate DNAT rules to redirect the traffic. c) Add an entry to /etc/shorewall/masq that sets the source IP address on all outgoing traffic (on the one NIC) that doesn't originate from one of the firewall's IP addresses (Hint: Place !ip1,ip2,... in the SOURCE column. Hopefully you are using a recent enough Shorewall release that it isn't called the SUBNET column in your file). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
