[Shorewall-users] local network blocking

Tom Eastep teastep at shorewall.net
Thu Oct 16 12:23:03 PDT 2003


On Thu, 2003-10-16 at 11:19, Tom Pittman wrote:
> On Thu, 16 Oct 2003 17:50:57 +0200
> Norbert Crettol <norbert.crettol at idiap.ch> wrote:
> 
> > My masq file :
> > #INTERFACE              SUBNET          ADDRESS
> > eth0                    eth2
> > #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
> 
> Should the above file also contain an entry for eth0-->eth1 ??
> Just a thought as I'm not all that enlightened in networking.

It's not necessary provided that the Shorewall box is the default
gateway for the networks connected to those two interfaces.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-users mailing list