[Shorewall-users] Shorewall:FORWARD:REJECT only from private/ natted

Tom Eastep teastep at shorewall.net
Mon, 23 Sep 2002 14:00:39 -0700


Christophe Zwecker wrote:
> hmm,
> 
> yes sounds very reasonable, Ill have a talk with our netware admin.
> 

I agree with Bradey that modifying the BorderManager config is the best 
approach -- if you follow the Shorewall instructions I posted earlier, 
local traffic to the Web Server is needlessly routed through the Shorewall 
box.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net