[Shorewall-newbies] 2 IPs and Three Interface firewall

Tom Eastep teastep at shorewall.net
Wed Mar 3 10:02:18 PST 2004


On Wednesday 03 March 2004 09:58 am, electro jacs wrote:

> Now
> I configure my SHOREWALL: NAT, Proxy, ARP correctly, (that seems) but now,
> I have a question:  when I configure an IP (200.x.x.195) in the LOC ( ARP
> ), The trafic in this IP also is affected by the rules of firewall ?

Yes.

> and if that happens, since I make to allow all traffic clean without the
> rules of firewall?

No -- but you can add rules specifically for that IP address to allow it any 
access that you want to give it. To give the IP complete access in and out, 
you can add these at the top of /etc/shorewall/rules:

ACCEPT	loc:200.x.x.195	all		all
ACCEPT	all		loc:200.x.x.195	all

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list