Changes between Version 2 and Version 3 of shorewall-dnat-proxy

Show
Ignore:
Timestamp:
01/13/11 18:19:32 (8 years ago)
Author:
ibaldin (IP: 152.54.9.21)
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • shorewall-dnat-proxy

    v2 v3  
    55This proxy mechanism relies on dynamically manipulating firewall rules on a Linux host running [http://www.shorewall.net Shorewall firewall management framework] to install and remove firewall rules to remap internal IP addresses and ports of VMs (typically port 22 - SSH) to the publicly addressable IP address of the firewall host and a different port address. The additional scripts developed for Shorewall are independent of ORCA, however they help bridge the gap between Shorewall and ORCA handlers by providing a simple API that lets the user (remotely) add and remove DNAT port-forwarding rules for VMs. 
    66 
    7 == ORCA-specific configuration == 
     7== Pitfalls == 
    88 
    99Be sure to allow tomcat connections (if ORCA tomcat is also running on the proxy host). Append the following to /etc/shorewall/rules: