X-Git-Url: https://git.stderr.nl/gitweb?a=blobdiff_plain;f=etc%2Fvuurmuur%2Frules%2Frules.conf;h=8fd8344ecc55c2d9d328b2ce42872289ac6411f1;hb=929e6bc363c53c2daf683608c663678a9dc4a911;hp=1532bbe9fd619caa95d73476c7e32d1a8d7e3b14;hpb=2c279488e0cf61a9ead59deada6180477f479d0f;p=matthijs%2Fservers%2Fdrsnuggles.git

diff --git a/etc/vuurmuur/rules/rules.conf b/etc/vuurmuur/rules/rules.conf
index 1532bbe..8fd8344 100644
--- a/etc/vuurmuur/rules/rules.conf
+++ b/etc/vuurmuur/rules/rules.conf
@@ -7,8 +7,13 @@ RULE="Accept service any from zeratul.direct to firewall options comment=\"direc
 RULE="Accept service any from firewall to zeratul.direct options comment=\"direct traffice to zeratul\""
 RULE="separator"
 RULE="Accept service ssh-host from any to firewall(any) options comment=\"ssh access to the host\""
-RULE="Portfw service http from world.inet to www.vservers.internal options comment=\"http to www\""
-RULE="Portfw service smtp from world.inet to mail.vservers.internal options comment=\"smtp to mail\""
-RULE="Portfw service dns from world.inet to dns.vservers.internal options comment=\"dns to dns\""
-RULE="Portfw service imaps from world.inet to mail.vservers.internal options comment=\"imaps to mail\""
-RULE="Portfw service ssh from world.inet to login.vservers.internal options comment=\"ssh to login\""
+RULE="Dnat service http from world.inet to www.vservers.internal options comment=\"http to www\""
+RULE="Accept service http from world.inet to firewall options in_int=\"vserver-www-nic\""
+RULE="Dnat service smtp from world.inet to mail.vservers.internal options comment=\"smtp to mail\""
+RULE="Accept service smtp from world.inet to firewall options in_int=\"vserver-mail-nic\""
+RULE="Dnat service dns from world.inet to dns.vservers.internal options comment=\"dns to dns\""
+RULE="Accept service dns from world.inet to firewall options in_int=\"vserver-dns-nic\""
+RULE="Dnat service imaps from world.inet to mail.vservers.internal options comment=\"imaps to mail\""
+RULE="Accept service imaps from world.inet to firewall options in_int=\"vserver-mail-nic\""
+RULE="Dnat service ssh from world.inet to login.vservers.internal options comment=\"ssh to login\""
+RULE="Accept service ssh from world.inet to firewall options in_int=\"vserver-login-nic\""