Re: [Shorewall-users] routing multiple network

Wed, 04 Jun 2014 12:45:04 -0700 

On 6/4/2014 11:55 AM, ricky gutierrez wrote:
> Hi list , I'm migrating SuSEfirewall2 to shorewall, routed me several
> networks this coming from a router to my network lan and I can from my
> network lan reach those networks,
> 
> something like:
> 
> Internet ====eth1 - LinuxBOX - eth0====LAN (192.168.1.254/24) ==switch-LAN
> 
>                                  =
> 
>                                  =
> 
>                                  =
> 
>                                 ROUTER
> 
>                               Other networks
> 
>                                192.168.2.0/24
> 
>                              192.168.3.0/24
> 
> in SuSEfirewall2 ,I add these networks to a couple of options and it
> works: FW_FORWARD="192.168.1.0/24,192.168.2.0/24
> 192.168.1.0/24,192.168.3.0/24 192.168.1.0/24,192.168.4.0/24
> 192.168.1.0/24,192.168.5.0/24 192.168.1.0/24,192.168.6.0/24 ,
> FW_MASQ_NETS="192.168.1.0/24, 192.168.4.0/24, 192.168.2.0/24,
> 192.168.3.0/24, 192.168.5.0/24, , but shorewall've been testing this
> tutorial http://shorewall.net/Multiple_Zones.html and it gives me
> error:
> 
> shorewall[4865]:    ERROR: Policy "loc loc1 NONE" duplicates earlier
> policy "all all REJECT" /etc/shorewall/policy (line 17)

Policies are applied in the order in which they are entered in the
policy file. So the all->all policy must be last.

Your particular configuration is described at
http://www.shorewall.org/Multiple_Zones.html.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________

Attachment: signature.asc
Description: OpenPGP digital signature

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their 
applications. Written by three acclaimed leaders in the field, 
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to