shorewall

Hi all! I have on my mandrake 9.2 box two interfaces for my local network
(eth0 and eth1) and an adsl connection (eth2 with ppp0). The firewall is
filtering everything so far. How can I filter only the net and not eth0
and eth1? Thanks.

Tropique Studio wrote:

> Hi all! I have on my mandrake 9.2 box two interfaces for my local
> network (eth0 and eth1) and an adsl connection (eth2 with ppp0). The
> firewall is filtering everything so far. How can I filter only the net
> and not eth0 and eth1? Thanks.

By reading the manual or the examples at www.shorewall.org.

Look for policy.

EJ
--
Remove the obvious part (including the dot) for my email address.
http://www.vanwesten.net for examples of ipf and pf.

Tropique Studio wrote:

> Hi all! I have on my mandrake 9.2 box two interfaces for my local network
> (eth0 and eth1) and an adsl connection (eth2 with ppp0). The firewall is
> filtering everything so far. How can I filter only the net and not eth0
> and eth1? Thanks.

Why three network cards? If you're using the box as a
gateway/router/firewall, you should only need two NIC's: one for the
internet and one for the LAN (to uplink into a switch). Try that in the
mandrake config for shorewall and try again. Alternately, you can
uninstall shorewall and do it yourself using iptables ...

--
You have an unusual equipment for success. Be sure to use it properly.

NeoSadist wrote:

> Tropique Studio wrote:
>
> > Hi all! I have on my mandrake 9.2 box two interfaces for my local network
> > (eth0 and eth1) and an adsl connection (eth2 with ppp0). The firewall is
> > filtering everything so far. How can I filter only the net and not eth0
> > and eth1? Thanks.
>
> Why three network cards? If you're using the box as a
> gateway/router/firewall, you should only need two NIC's: one for the
> internet and one for the LAN (to uplink into a switch).

Maybe he have a DMZ !

1 nic for the LAN (eth0)
1 nic for the DMZ (eth1)
1 nic for the NET (eth2 & ppp0)

--
Thanks,
JP

Jean-Pierre Denis
jp at msfree dot ca