Hi All! On 2002 Apr 24, Haluska György wrote:
On Wed, Apr 24, 2002 at 11:29:20AM +0200, Balazs Scheidler wrote:
InetZone("site-net", "192.168.20.0/24", # list of allowed outbound services, '*' matches anything outbound_services=["intra_http", "intra_ftp", "intra_cvs"],
# list of allowed inbound services, '*' matches anything inbound_services=[]),
InetZone("local", "127.0.0.0/8", inbound_services=["*"], outbound_services=[]),
InetZone("internet", "0.0.0.0/0", inbound_services=["*"], outbound_services=[])
Két if van eth0: 10.0.x.x, eth1:192.168.20.254 Az eth0 a kulso az eth1 a belso oldal. A 10.0.x.x nem esik bele a 0.0.0.0/0 -ba ?
Eredeti level: Apr 23 17:10:58 site zorp-site[14582]: (zorp@site/intra_http:97): Inbound service intra_http not permitted into zone Zone(site-net, ^^^^^^^^^^^^^^ 192.168.20.0/24) ^^^^^^^^^^^^^^^^ Ebben mi a 10.0.x.x? -- Szalay Attila BalaBit IT Biztonságtechnikai Kft. tel/fax:(36-1)-217-14-98 1092 Bp. Köztelek u. 4/b mobil:(36-20)-950-30-55 http://www.balabit.hu