On Friday 25 August 2006 15:15, Roberto C. Sanchez wrote: > On Fri, Aug 25, 2006 at 02:53:17PM -0600, David Bishop wrote: > > This is undoubtedly a 'routing 101' question, but apparently I need to go > > back to school. I have a debian machine acting as your typical 'small > > email/web server/nat gateway'. The only slightly unusual thing is that > > I'm adding a second private nework. A local (across the street) eatery > > wants to add free wireless and I want free meals. We have the whole > > setup in place, with the extra nic installed, the wireless can in place, > > and it works. However, I *don't* want traffic from 192.168.1.x (the > > cafe) to be routed to 10.0.0.x (my lan), just out through my broadband > > connection. How do I do that? > > > > Thanks! > > > > David > > If you are using shorewall, you could treat the cafe network as a DMZ. > There is excellent documentation on how to set this up on the shorewall > site. I'm not, actually. Hand-rolled iptables rules, actually. Is there a good 'key phrase' that I can google for, that might help me out? David
Attachment:
pgpimNrujE60D.pgp
Description: PGP signature