On 7/7/12 10:05 AM, "Nicolas Riendeau" <[email protected]> wrote:
>Hi! > >Sorry for the delayed reply... > >Simon Hobson wrote: >> Well it's possible they used private addressing in the DMZ (it's not >> an uncommon thing to do) and port-forward traffic as required. That > >Yep the configuration I am most familiar with (I know it changed >somewhat recently and I don't have all the details) used private >addressing. > >(It still does actually of that I am sure..) > >> way you can direct any public Ip to any host in any subnet - but you >> still get all the issues relating to using NAT. > >Is that doable with Shorewall in my situation (the subnet traffic is >sent to an IP which is not in that subnet and I am using PPPoE? Of course; and you don't even have to add the subnet addresses on your firewall. -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
