Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 05-10-2004, 09:31 PM   #1
Registered: Jul 2003
Location: Victoria, British Columbia
Distribution: Mandriva 2010 (cooker) with Bind9, Sendmail, Postgresql and Apache2 servers
Posts: 63

Rep: Reputation: 15
shorewall with 2 external static ips and DMZ

At present, I have 2 external static IPs, one of which, eth0, is the usual gateway for the internet and the second is another site which will be an IP based virtual host to provide SSL security later. These 2 IPs run from ADSL through a hib to their respective ethernet cards.

The server has 3 additional ethernet cards: eth2 handles traffic for 2 name-based virtual hosts, eth3 handles mail services for all users, and eth4 is totally off limits to internet users.

Connectivity has not been a problem, nor has local DNS.

Now its about the firewall ......

What I have tried to do first was divide traffic by type, which creates 2 dmz areas (eth2 and eth3) as well as internal lan networks (,, and

This permits an easier migration of developing sites to dedicated colo servers later on.

It seems I should be able to adapt the 'three-interface firewall' in shorewall's documentation.
The only potentially 'messy' area is in the Proxy ARP (or DNAT) setup, as I see it.

Am I heading for an unseen cliff????

Any thoughts or suggestions would be most welcome.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
snort 2.4.1 (inline IPS) +shorewall 2.4.x where best to insert the QUEUE in iptables Emmanuel_uk Linux - Security 5 10-18-2005 06:48 AM
ADSL and multiple external static IPs adasko Linux - Networking 3 09-15-2005 07:01 PM
MNF - Trouble Moving IPs behind the DMZ comkid Linux - Networking 1 11-15-2004 10:55 AM
Static NAT / DMZ / VPN question Funky D Linux - Networking 1 10-22-2004 07:17 AM
routing problem with 2 static (external) IPs gjmwalsh Linux - Networking 3 05-23-2004 09:17 PM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 07:44 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration