On Nov 14, 2011, at 10:40 PM, <[email protected]> <[email protected]> wrote: > > i’d like to set up shorewall as a bridging firewall. I’ve got a shorerwall > management server and 2 shorewall lite servers. Version 4.24-1
Presumably, you mean 4.4.24-1? > The shorewalllite servers have 3 interfaces: > Eth2 dmz > Eth0 internet > Eth1 loc > > I created a bridge and added interface eth0+eth1. > > I’d like to filter/restrict the traffic through the bridge. > Now my question is: > > Do I need shorewall-perl for this? Where can I download shorewall-perl? I > alrdy searched through some download mirrors on shorewall.net but didn’t find > shorewall-perl… >From http://www.shorewall.net/FAQ.htm (FAQ 14) I can't find the Shorewall 4.4 shorewall-common, shorewall-shell and shorewall-perl packages? Where are they? Answer:In Shorewall 4.4, the shorewall-shell package was discontinued. The shorewall-common and shorewall-perl packages were combined to form a single shorewall package. > > Can I filter through the bridge with shorewall + shorewall lite, too ? Yes. > > I already installed bridge-utils, etc. I only don’t know how to configure > shorewall for bridiging firewall support. > Can I use this tutorial, even I don’t use shorewall-perl? > http://www.shorewall.net/bridge-Shorewall-perl.html If you have Shorewall 4.4.24, then you have Shorewall-perl as mentioned above. > > If I start the command: “shorewall load firewall1” on my shorewall manage > server. It starts compiling, but give me 2 errors: > First in shorewall.conf: > Bridging=YES is not supported in shorewall 4.x.x > I googled this error and was linked to: > http://www.shorewall.net/bridge-Shorewall-perl.html Which is the correct HOWTO. > > That’s why I ask you: do I need shorewall-perl for bridiging firewall support > and where can I dpownload it? > > As I commented the Bridging=yes out I received another error in “hosts” > ERROR: invalid IP Address (eth0) at line 132 > > That’s the line: > net br0:eth0 > > I’d really appreciate any given support ! Simply follow the instructions at http://www.shorewall.net/bridge-Shorewall-perl.html. -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
