« previous next »
Pages: [1]

Author Topic: traffic Shaping - how do we redirect Internet requests  (Read 2311 times)

nicolasdiogo

  • Forum Moderator
  • Zen Samurai
  • *****
  • Posts: 263
  • Karma: +3/-0
  • a pessimist, but trying out optimism
    • View Profile
    • BrainPowered Business Intelligence Consultancy - UK
traffic Shaping - how do we redirect Internet requests
« on: October 20, 2010, 01:47:02 am »
Hello,

i have a zentyal firewall sitting behind a router which is suppose to redirect traffic as per ports and application protocol.

i thought i would be able to use Traffic Shaping but it is not working.
so let me explain my setup and maybe someone will be able to tell me what i have misunderstood.

internet traffic
 to
router (192.168.1.1)

DMZ - all traffic from router goes to

Zentyal - which as two IPs:
  192.168.1.2
  10.0.0.1 {intranet}


on this Zentyal, i have tried to setup Traffic Shaping rules for:
DNS to redirect to 10.0.0.2
HTTP/HTTPS to redirect to 10.0.0.3
email to redirect to 10.0.0.4

i have created network objects for all the above IPs and set the rules and enabled.  But i can not get it to work.

i am sure traffic shaping works but i can not see how.

could someone please point me out on the right direction on how to solve this problem?


Many thanks,

Nicolas



Logged
my opinions and suggestion expressed on this forum are my own as a user.
please note that i am not part of the Zentyal Development Team

www.brainpowered.net - supporting open-source Business Intelligence in Europe

FutureTechSys

  • Zen Warrior
  • ***
  • Posts: 163
  • Karma: +0/-0
    • View Profile
    • Future Tech Systems, LLC
Re: traffic Shaping - how do we redirect Internet requests
« Reply #1 on: October 20, 2010, 05:31:43 am »
Can you access those services directly by the internal IP?  If you can, its with the traffic shaping, if you can't, its something else.  Would be good to get it working at a basic level first, if you haven't already.  Just my $0.02
Logged
Future Tech Systems, LLC
http://www.FutureTechSys.com

See our Zazen servers running Zentyal!
http://www.futuretechsys.com/small-biz/

SpiderOak online backup - 2GB Free!
https://spideroak.com/download/promo/fts

nicolasdiogo

  • Forum Moderator
  • Zen Samurai
  • *****
  • Posts: 263
  • Karma: +3/-0
  • a pessimist, but trying out optimism
    • View Profile
    • BrainPowered Business Intelligence Consultancy - UK
Re: traffic Shaping - how do we redirect Internet requests
« Reply #2 on: October 20, 2010, 11:32:11 am »
thanks for that.

for example, let me explain the DNS requests.

using a machine with IP 192.168.1.222

i test the DNS on the Zentyal router with:

Code: [Select]
nslookup mydomain.com 192.168.1.2

which sends a DNS request that i hoped would be re-routed into the DNS server behind this firewall.

but it times out.

the traffic shaping rules reads:
Code: [Select]
interface to shape: external (192.168.1.2)

source: any

destination: DNS01 (10.0.0.1)

priority: 0

guaranteed rate: 0

limited: 0

now if i create an old- fashioned Port Forwarding Rule; it works flawless.

however, i am need to filter other protocol that can be done with Traffic Shaping.
but if i can not get this simple rule done, it is difficult do the more complex one later.

does the info above provide you with sufficient to understand what i am doing wrong?

additionally, i am using x64 and i have installed the 'suggested' packages when installing Traffic Shaping.

many thanks,

Nicolas

Logged
my opinions and suggestion expressed on this forum are my own as a user.
please note that i am not part of the Zentyal Development Team

www.brainpowered.net - supporting open-source Business Intelligence in Europe
Pages: [1]
« previous next »