~mdw / firewall / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
local.m4: Untrusted source addresses appear on the backbone.
[firewall] / local.m4
diff --git a/local.m4 b/local.m4
index 54d0c86..f0e093d 100644 (file)
--- a/local.m4
+++ b/local.m4
@@ -72,10 +72,11 @@ defnet housebdry virtual
 ## House hosts.
 defhost radius
        hosttype router
-       iface eth0 dmz unsafe safe
-       iface eth1 dmz unsafe safe
+       iface eth0 dmz unsafe safe untrusted default
+       iface eth1 dmz unsafe safe untrusted default
        iface eth2 safe
-       iface eth3 untrusted
+       iface eth3 untrusted default
+       iface t6-he default
 defhost roadstar
        iface eth0 dmz unsafe
        iface eth1 dmz unsafe
@@ -83,12 +84,14 @@ defhost jem
        iface eth0 dmz unsafe
        iface eth1 dmz unsafe
 defhost artist
+       hosttype router
        iface eth0 dmz unsafe
        iface eth1 dmz unsafe
+       iface eth3 untrusted
 defhost vampire
        hosttype router
-       iface eth0.0 dmz unsafe safe
-       iface eth0.1 dmz unsafe safe
+       iface eth0.0 dmz unsafe untrusted safe
+       iface eth0.1 dmz unsafe untrusted safe
        iface eth0.2 safe
        iface eth0.3 untrusted
        iface dns0 iodine
Firewall scripts for distorted.org.uk.