I want to set my internal zone apply to IP addresses 192.168.1.0/24 and my external zone to apply to everything else. Both zones need to run off the same interface.
I have been able to program the same thing via shorewall – in addition to the software firewalls running on my desktop – but I cannot figure out how to do it in SuSE’s firewall. The zones screen allows you to insert a custom string but it only seems to like other network interfaces. Currently running SuSE 11, though I ahve struggled with this in 10.0 and 10.1 as well.
>
> Hello,
>
> I want to set my internal zone apply to IP addresses 192.168.1.0/24 and
> my external zone to apply to everything else. Both zones need to run off
> the same interface.
>
> I have been able to program the same thing via shorewall – in addition
> to the software firewalls running on my desktop – but I cannot figure
> out how to do it in SuSE’s firewall. The zones screen allows you to
> insert a custom string but it only seems to like other network
> interfaces. Currently running SuSE 11, though I ahve struggled with
> this in 10.0 and 10.1 as well.
>
> How do I set this?
>
> Thanks,
>
> Tom
>
>
If you were to use an alias for your networks, you can do what you’re looking
for.
Remember that the SuSE/YaST Firewall is based on interfaces, not IP addresses.