HELP! Trying to masq some machines
HeCSa <hecsa <at> hecsa.com.ar>
2009-01-01 20:19:25 GMT
I'm trying to build some configuration with some troubles, maybe it's
My network has a machine acting as a firewall / proxy server between
internal and external zones.
Then, my machine has two interfaces, eth0 connected to Internet with a
static IP address, and eth1, connected to the internal network, with a
static IP address too.
Let's assume that external IP is 126.96.36.199. Internal IP addresses
are (really) 188.8.131.52 based.
I'm using, as firewall / proxy, a machine with Ubuntu Server 8.04 LTS.
Shorewall version is 4.0.6, squid is 2.6STABLE18, using squidguard and
dansguardian to restrict access to some pages.
The proxy port I'm using is 8008.
The problem I have is that some machines need to use some internet based
services, and then need to access directly the internet without using
the proxy. Let's assume that the IP addess of one of this machines is
184.108.40.206. All other machines in the 220.127.116.11 network are going
to access the web via the squid/squidguard/dansguardian system.
Well...I don't really understand how to configure my shorewall to let
I''m copying my shorewall configuration files, located under
/etc/shorewall. Please, can anybody help me with this, or guide me on
the right direction? I'm really confused!!!
Following, my config files: