[Shorewall-users] multiple subnets
nerijus at users.sourceforge.net
Tue May 6 20:00:48 PDT 2003
I have the following working situation (shorewall 1.4.2).
eth0 inet addr:192.168.56.1 Bcast:192.168.56.255
eth1 inet addr:220.127.116.11 Bcast:18.104.22.168
eth2 inet addr:22.214.171.124 Bcast:126.96.36.199
mail eth2 188.8.131.52
dsl ppp0 detect
loc eth0 192.168.56.255
dmz eth1 184.108.40.206
loc dmz ACCEPT
PCs in loc zone can access services in dmz.
Now 3 new subnets 192.168.57.0/24 - 59.0/24 (radio lan) were connected
to the loc lan through 192.168.56.22, which is configured to route to
http://www.shorewall.net/Shorewall_and_Aliased_Interfaces.html I changed
- eth0 192.168.56.255,192.168.57.255,192.168.58.255,192.168.59.255
and hosts to:
Also entered such commands at the firewall console:
route add -net 192.168.57.0/24 dev eth0 gateway 192.168.56.22
route add -net 192.168.58.0/24 dev eth0 gateway 192.168.56.22
route add -net 192.168.59.0/24 dev eth0 gateway 192.168.56.22
The problem is that PCs from radio link (192.168.58.2 for example) can
ping the firewall, but cannot access dmz. What could be a problem?
I can provide radio lan connection details.
More information about the Shorewall-users