[ previous ] [ next ] [ threads ]
 
 From:  "James W. McKeand" <james at mckeand dot biz>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  FW: [m0n0wall] N/A
 Date:  Fri, 18 Aug 2006 09:17:18 -0500 
Joel Cruz wrote:
> I have 3 server mail, dns and proxy (all running in linux). We are
> the one who host our mail and dns server as of now we don't have
> firewall for the three server only the firewall that embedded in
> linux. My plan is to put first the monowall in front of my 3 servers.
> Just like this 
> 
> Wan--> monowall-->private
> 	    |
> 	    |
> 	    Dmz
> 
> 
> I setup the monowall in P4 2.66Mghz 4G, 128MB memory. This is my
> configuration
> 
> Wan = dhcp
> Lan = 192.168.1.x/24
> DMZ = 192.168.2.x/24
> 
> Rules is on default configurations.
> 
> NAT:
> 
> Inbound
> Wan	TCP	SMTP	192.168.2.x	SMTP	description
> Wan	TCP	HTTP	192.168.2.x HTTP	description
> Wan	TCP	DNS	192.168.2.x	DNS	description
> 
> 
> Aliases
> 
> Mail	210.1.x.x 	mail server
> Dns	210.1.x.x	dns server
> Proxy 210.1.x.x	proxy server
> 
> Prob 1: From my proxy when I try to ping the gateway request time out
> but in lan when I try to ping the ip the proxy it will reply. I
> cannot ping 
> from DMZ to gateway ip which is the ip of monowall
> 
> Prob 2: My aliases for example 210.1.x.x I cannot ping outside the
> web I tried some website that have a ping tool. I have to see the IP
> of My aliases outside the web even the aliases that assign as the ip
> of my 
> mail.
> 
> 
> Please can you help with my prob. I tried so many opensource firewall
> like smoothwall, ipcop but I cannot configure my network to them...
> 
> 
> Thanks.
> 
> joel
> 
> 
> 
> 
> 
> -----Original Message-----
> From: James W. McKeand [mailto:james at mckeand dot biz]
> Sent: Friday, August 18, 2006 8:55 PM
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: RE: [m0n0wall] N/A
> 
> Joel Cruz wrote:
>> I installed monowall in p4 128MB and 4MB hardisk. I want to setup my
>> 3 server in DMZ i have the complete segment of my public ip. I
>> created a aliase and name it as mail then make a nat rules in server
>> nat but when I ping the public ip that I created in aliase i it dint
>> see in the web. is there any configuration that i miss?
> 
> I am not clear on what you are asking. Here are some things that you
> may 
> be missing.
> 
> You may be misinterpreting the Aliases concept on m0n0wall. On
> m0n0wall 
> the Aliases are simple shortcuts for NAT and Firewall rule creation.
> Any light blue field in the rule creation pages you can use an Alias.
> If you need to change the IP of a machine that you created an Alias,
> you do not need to edit every rule just edit the Alias.
> 
> You also may need to create rules for your DMZ to allow traffic out.
> The default on the LAN is allow everything out, the default on the
> OPT (or 
> DMZ) is not (there is not a default any -> any rule - like the one on
> the LAN interface).
> 
> Also check the servers in the DMZ to make sure they are using the IP
> of 
> the m0n0wall DMZ interface as their gateway.
> 
> _________________________________
> James W. McKeand
> 
> 
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> 
> 
> --
> This message has been scanned for viruses and
> dangerous content by Diversion Industries Inc.
> believed to be clean.