mess-mate wrote:
> snip..
>
> I've found this about vserver host/guest iptables.
> http://www.unixshell.com/wiki/index.php/Creating_and_using_vserver_virtual_servers
>
> mess-mate
Hi,
You seem to have chosen "Networking Option B" (DNAT) in the guide you mention
above. My guess is that you did that choice because in "Networking Option A" it
says:
The first option for networking is for those who want
their guests to have external IP addresses. This is
ideal for resellers, and is actually the simpler setup.
If you decide to use Networking Option A, you must
have additional external IP addresses.
... which might have scared you off. But please note that when the guide talks
about "external IP addresses" above, they really mean IP addresses that are
usable on the physical network of the vserver host. In YOUR case that is NOT
"external IP addresses", but rather addresses in the network 192.168.20.0/24.
So, to make a long story short: Choose "Networking Option A" instead. That is
MUCH easier to understand, configure and maintain. And I would like to go as
far
as to say that you shouldn't even try to fix your current setup, unless you do
it purely for educational purposes.
Good luck!
/Martin Leben
-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference
Don't miss this year's exciting event. There's still time to save $100.
Use priority code J8TL2D2.
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
