[zorp-hu] (no subject)
iceman at gds.hu
iceman at gds.hu
Tue May 10 22:24:45 CEST 2005
jelenleg a következő konfiggal probálkoztam:
telnet xxx.xxx.xxx.xxx 80
Trying xxx.xxx.xxx.xxx...
telnet: Unable to connect to remote host: Connection refused
intra -v5 -T -p /etc/zorp/policy.py --autobind-ip 192.168.11.128
zorp:~# cat /etc/zorp/policy.py
from Zorp.Core import *
from Zorp.Http import *
# internet zona
InetZone('internet', '0.0.0.0/0',
inbound_services=['http'],
outbound_services=[])
# outbound_services=['http'])
# belso zona
InetZone('intranet', '10.10.10.0/24',
# inbound_services=['http'],
inbound_services=[],
outbound_services=['http'])
# intra peldany
def intra():
Service('http', HttpProxy,
router=DirectedRouter(dest_addr=SockAddrInet('10.10.10.2', 8080)))
# ,
# overrideable=FALSE, forge_addr=TRUE))
Listener(SockAddrInet('192.168.11.128', 50080), 'http')
dummy0 Link encap:Ethernet HWaddr 00:00:00:00:00:00
inet addr:192.168.11.128 Bcast:192.168.11.255
Mask:255.255.255.255
UP BROADCAST RUNNING NOARP MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
pkts bytes target prot opt in out source
destination
10 600 TPROXY tcp -- any any anywhere
anywhere tcp dpt:www TPROXY redirect 0.0.0.0:50080
mit kell még ezenkívül beállítani?
> On Tue, May 10, 2005 at 06:59:44AM +0200, iceman at gds.hu wrote:
>> Másik kérdés az lenne hogy tudom a tűzfalas gépnek megmondani hogy a
>> webszerver 10.10.10.10-es gép
>
> A Service sor módosításával:
> Service ('http', HttpProxy,
> router=DirectedRouter(dest_addr=SockAddrInet('10.10.10.10', 80)))
>
> --
> Friczy
> 'Death is not a bug, it's a feature'
> _______________________________________________
> zorp-hu mailing list
> zorp-hu at lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/zorp-hu
>
More information about the zorp-hu
mailing list