From 05dcc437751e1506b046bb557f70a9b08baa9544 Mon Sep 17 00:00:00 2001 From: teastep Date: Wed, 14 Feb 2007 17:02:11 +0000 Subject: [PATCH] Add IP address determination tip git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5406 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- docs/standalone.xml | 21 ++++++++++++++++++++- docs/three-interface.xml | 21 ++++++++++++++++++++- docs/two-interface.xml | 21 ++++++++++++++++++++- 3 files changed, 60 insertions(+), 3 deletions(-) diff --git a/docs/standalone.xml b/docs/standalone.xml index cb3ca86d8..868e31eef 100644 --- a/docs/standalone.xml +++ b/docs/standalone.xml @@ -411,7 +411,26 @@ root@lists:~# Before starting Shorewall, you should look at the IP address of your external interface and if it is in one of the above ranges, you should remove the norfc1918 option from the - entry in /etc/shorewall/interfaces. + entry in /etc/shorewall/interfaces. + To determine the IP address of your external interface, as root + type ip addr ls dev <interface> at the + command line where <interface> is your + external interface. The line beginning with inet identifies your IP + address. + + Example: + + root@lists:~# ip addr ls dev eth0 +2: eth0: <BROADCAST,MULTICAST,UP,10000> mtu 1500 qdisc htb qlen 1000 + link/ether 00:02:e3:08:48:4c brd ff:ff:ff:ff:ff:ff + inet 206.124.146.176/24 brd 206.124.146.255 scope global eth0 + inet6 fe80::202:e3ff:fe08:484c/64 scope link + valid_lft forever preferred_lft forever +root@lists:~# + + In this example, the IP address of the external interface is + 206.124.146.176 +
diff --git a/docs/three-interface.xml b/docs/three-interface.xml index 3755b93e0..0e2f28bb5 100644 --- a/docs/three-interface.xml +++ b/docs/three-interface.xml @@ -496,7 +496,26 @@ root@lists:~# the IP address of your external interface and if it is one of the above ranges, you should remove the norfc1918 option from the external interface's entry in - /etc/shorewall/interfaces. + /etc/shorewall/interfaces. + To determine the IP address of your external interface, as root + type ip addr ls dev <interface> at the + command line where <interface> is your + external interface. The line beginning with inet identifies your IP + address. + + Example: + + root@lists:~# ip addr ls dev eth0 +2: eth0: <BROADCAST,MULTICAST,UP,10000> mtu 1500 qdisc htb qlen 1000 + link/ether 00:02:e3:08:48:4c brd ff:ff:ff:ff:ff:ff + inet 206.124.146.176/24 brd 206.124.146.255 scope global eth0 + inet6 fe80::202:e3ff:fe08:484c/64 scope link + valid_lft forever preferred_lft forever +root@lists:~# + + In this example, the IP address of the external interface is + 206.124.146.176 + You will want to assign your local addresses from one sub-network or subnet and your DMZ addresses from another subnet. For our purposes, we diff --git a/docs/two-interface.xml b/docs/two-interface.xml index 5913242fd..aefe1dd53 100644 --- a/docs/two-interface.xml +++ b/docs/two-interface.xml @@ -458,7 +458,26 @@ root@lists:~# the IP address of your external interface and if it is one of the above ranges, you should remove the 'norfc1918' option from the external interface's entry in /etc/shorewall/interfaces. + class="directory">/etc/shorewall/interfaces. + To determine the IP address of your external interface, as root + type ip addr ls dev <interface> at the + command line where <interface> is your + external interface. The line beginning with inet identifies your IP + address. + + Example: + + root@lists:~# ip addr ls dev eth0 +2: eth0: <BROADCAST,MULTICAST,UP,10000> mtu 1500 qdisc htb qlen 1000 + link/ether 00:02:e3:08:48:4c brd ff:ff:ff:ff:ff:ff + inet 206.124.146.176/24 brd 206.124.146.255 scope global eth0 + inet6 fe80::202:e3ff:fe08:484c/64 scope link + valid_lft forever preferred_lft forever +root@lists:~# + + In this example, the IP address of the external interface is + 206.124.146.176 + You will want to assign your addresses from the same sub-network (subnet). For our purposes, we can consider a subnet to consists of a