[Shorewall-users] Portforwarding within a zone

Tom Eastep teastep@shorewall.net
Sun, 6 Jan 2002 13:03:04 -0800

On Sunday 06 January 2002 12:53 pm, Chris Freeze wrote:
> On 06-Jan-2002 Tom Eastep wrote:
> > What about your local proxy rule?
> ACCEPT  local     dmz:  tcp   http    -  !xx.xx.xx.xx

Understanding your problem is a bit like pealing an onion -- I take off o=
layer and there's still 100s more. So since you don't want us to see what=
xx.xx.xx.xx is, we have to assume that it's NOT an RFC1918 address in the=
DMZ. From this I would quess that you must have a rule somewhere that say=


Tom Eastep    \  teastep@shorewall.net
AIM: tmeastep  \  http://www.shorewall.net
ICQ: #60745924  \  Firewalls for Linux 2.4