Doug Hite wrote:
Depends on how you configure Shorewall.I am currently doing some tests of my new home router, with the configuration previously in EigerSteinBeta using Seawall to Bering using Shorewall. This is a dial-up router using ppp0 as the external interface. In my old router I had to include a line in the /etc/ppp/ip-up file that ran "seawall restart" when my ip changed. Using Shorewall, I don't see any mention of needing to reset the firewall when the ip changes. Can someone confirm that this is no longer needed in Shorewall ?
With PPP, if you have DNAT rules and you set DETECT_DNAT_IPADDRS=Yes in shorewall.conf then you must restart shorewall if the IP address changes.
Since DETECT_DNAT_IPADDRS=Yes with PPP doesn't make much sense, if you set DETECT_DNAT_IPADDRS=No then you shouldn't have to worry about address changes.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ [EMAIL PROTECTED]
-------------------------------------------------------
This sf.net email is sponsored by: viaVerio will pay you up to
$1,000 for every account that you consolidate with us.
http://ad.doubleclick.net/clk;4749864;7604308;v?
http://www.viaverio.com/consolidator/osdn.cfm
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
