On Tue, Apr 22, 2008 at 11:29 AM, Joseph L. Casale <[EMAIL PROTECTED]> wrote: > >If you need to access the ADSL modem from your LAN, you need to give > >eth0 an IP in the same range as the ADSL modem's LAN IP and you can > >put eth0 in the WAN zone I guess. > > Well, its more complicated than that :) I don't want any connectivity from > the > host creating the bridge, Shorewall will run individually on each guest's > virtual > interface that is in the bridge (using xen). > Cross-talk, I thought I was answering the other query :D.
We've done something similar, just assign no IP to the bridge interface. Make sure there are no routes on to that interface. You'd get almost the same effect if you assign an IP and block all traffic to the fw from that interface - and you need to reach the ADSL modem somehow? Or will you be reaching the modem from one of the guests? Prasanna. -- www.elinanetworks.com Seamless, secure delivery of applications. ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
