That's why I stay away from the starter scripts. Learning how to hand code your tables works much better. I tried a while ago to use the shorewall scripts and the RH firewall tools both really screwed up the rules I wanted set. It seems like they expect eth0 to be external and eth1 to be internal but mine are always the other way. I set my internal first before I let it the box hit the internet just seems like the smarter thing to do.
Methinks a more careful reading of the docs and config files was in order. In Shorewall, you first define /etc/shorewall/zones like this:
net The Internet loc Local Network
Then you tell it which interfaces go into which zones using /etc/shorewall/interfaces:
net eth1 loc eth0
Simple, and I've never had a problem with it yet, on any kind of combination of interfaces.
-- Rodolfo J. Paiz [EMAIL PROTECTED]
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
