http://www.linuxquestions.org/questi...uccess+atlarst
Found this thread which is exactly what I was after...but ...
After spending most of the day attempting to replicate this without clearing and reinstalling Shorewall (I want this to be an easilly replicated setup from the Mandrake discs) I still have the same problem?!
This is what I got to using Webmin:
network zones:
Zone ID Displayed name Description
net Net Internet zone
loc Local Local
network interfaces:
Interface Zone name Broadcast address Options
eth1 net Automatic None
eth0 loc Automatic None
policies:
Source zone Destination zone Policy Syslog level Traffic limit
loc net ACCEPT None None
loc Firewall ACCEPT None None
Firewall net ACCEPT None None
net Any DROP info None
Any Any REJECT info None
firewall rules:
Action Source Destination Protocol Source ports Destination ports
ACCEPT Firewall Zone Local UDP Any 137,139
ACCEPT Firewall Zone Local TCP Any 137,139,445
ACCEPT Zone Local Firewall UDP Any 137,138,139
ACCEPT Zone Local Firewall TCP Any 137,138,139,445,10000
REDIRECT Zone Local Port 3128 TCP Any www
ACCEPT Firewall Zone Net TCP Any www
Does this look like it should work?
Does etc/shorewall/zones + interfaces + policy + rules replace etc/sysconfig/iptables?
Do i need to delete etc/sysconfig/iptables?
JB.