lee <l...@yun.yagibdah.de> wrote: > Yes and when I replace the interface I have now (eth1) with a bridge > device (br1), then how do I tell shorewall that the guest is in the dmz > (for example)?
You need "bridge" and "routeback" set in your shorewall interfaces file. Take a look at http://www.shorewall.net/SimpleBridge.html and http://www.shorewall.net/KVM.html. I think that the second reference will be particularly useful for you - ignore the references to wlan0, and replace "eth0" and "br0" with "eth1" and "br1" respectively. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/62vli9xvgg....@news.roaima.co.uk
