SuSefirwall Configuration

samhela · October 18, 2011, 10:23am

Dear all,

I would like to host my new website under my DMZ, i would like to work this on like the following fashion

Internal NW=192.168.0.0/24
External NW= ISP Nw
DMZ=172.16.0.0/29

i give three interfaces for the above zones, currently i am using SuSefierwall2 but now their is a need to host the website and mail server inside our data center can any one help me out here.

robin_listas · October 18, 2011, 1:23pm

On 2011-10-18 10:26, samhela wrote:
>
> Dear all,
>
> I would like to host my new website under my DMZ, i would like to work
> this on like the following fashion
>
> Internal NW=192.168.0.0/24
> External NW= ISP Nw
> DMZ=172.16.0.0/29

If I recall correctly, with SuSEfirewall2 the DMZ needs an internet range.
Not a localnet. I might be wrong, though.

Enter all the network devices here which point to the dmz/dialups.

A “dmz” is a special, seperated network, which is only connected

to the firewall, and should be reachable from the internet to

provide services, e.g. WWW, Mail, etc. and hence is at risk from

attacks. See /usr/share/doc/packages/SuSEfirewall2/EXAMPLES for an

example.

I suppose the book explains more.

–
Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)