Mailinglist Archive: opensuse-security (448 mails)
| < Previous | Next > |
Re: [suse-security] SuSEFirewall2 - Primary Domain Controller
- From: Michael Appeldorn <appeldorn@xxxxxxxxx>
- Date: Wed, 02 Jan 2002 09:16:27 +0100
- Message-id: <NL1VBSOFDFEVTVUTYW2Z8YML3VFD.3c32c1db@pc_100_32>
>Hallo!
>I have SuSE7.3 and the SuSEFirewall2 with 3 Interfaces,
>ppp0/eth0 192.168.0.99 --> DSL/Internet
>eth1 192.168.1.254 --> Network1 ---> pdc, webserver,
>mailserver, Clients
>eth2 192.168.2.254 --> Network2 ---> Clients
>
>My PDC is in Network1. But i want to use my PDC for Network2, too!
>
>I canĀ“t ping any Machine Names. (except of the M$ Machines in the same
>subnet)
>So what do i have to change in my firewall config except of Point22?
>Do i need a wins or DNS to get the name broadcasts working?
>
>Cheers, Mario Ohnewald
>
>p.s. I hope i have explained it well enought!
As far as good. You need to activate this
in /etc/rc.config.d/firewall2.rc.config
snip
------
# Allow same class routing per default?
# REQUIRES: FW_ROUTE
#
# Do you want to allow routing between interfaces of the same class
# (e.g. between all internet interfaces, or all internal network interfaces)
# be default (so without the need setting up FW_FORWARD definitions)?
#
# Choice: "yes" or "no", defaults to "no"
#
FW_ALLOW_CLASS_ROUTING="yes"
------
snap
thats activating routing between the internal interfaces
Your
Michael Appeldorn
>I have SuSE7.3 and the SuSEFirewall2 with 3 Interfaces,
>ppp0/eth0 192.168.0.99 --> DSL/Internet
>eth1 192.168.1.254 --> Network1 ---> pdc, webserver,
>mailserver, Clients
>eth2 192.168.2.254 --> Network2 ---> Clients
>
>My PDC is in Network1. But i want to use my PDC for Network2, too!
>
>I canĀ“t ping any Machine Names. (except of the M$ Machines in the same
>subnet)
>So what do i have to change in my firewall config except of Point22?
>Do i need a wins or DNS to get the name broadcasts working?
>
>Cheers, Mario Ohnewald
>
>p.s. I hope i have explained it well enought!
As far as good. You need to activate this
in /etc/rc.config.d/firewall2.rc.config
snip
------
# Allow same class routing per default?
# REQUIRES: FW_ROUTE
#
# Do you want to allow routing between interfaces of the same class
# (e.g. between all internet interfaces, or all internal network interfaces)
# be default (so without the need setting up FW_FORWARD definitions)?
#
# Choice: "yes" or "no", defaults to "no"
#
FW_ALLOW_CLASS_ROUTING="yes"
------
snap
thats activating routing between the internal interfaces
Your
Michael Appeldorn
| < Previous | Next > |