2012/10/24 Simon Hobson
> I.S.C. William wrote:
>
> >For it is exactly what I want, block all access to the local network
> >(loc) to internet (net) and similar as net2loc, that only can select
> >that port open.
> >
> >You say that I need one more rule, I could mention that but I need
> >to acco
On 10/24/2012 07:30 AM, Tom Eastep wrote:
On 10/24/2012 07:22 AM, Jason Wever wrote:
On Wed, Oct 24, 2012 at 10:17 AM, Tom Eastep wrote:
Sorry -- I missed this last part when I responded earlier. There is
currently no way to use the statistic match for load-balancing over
several SNAT sources;
Hey
First, apologies if this went out twice. I sent the original email from an odd
email configuration (essentially from an alias of what I signed up as). I
searched and noticed that my post did not appear and I did not get a bounce
back so I was confused. I waited a few days before resending.
On 10/24/2012 07:22 AM, Jason Wever wrote:
> On Wed, Oct 24, 2012 at 10:17 AM, Tom Eastep wrote:
>> Sorry -- I missed this last part when I responded earlier. There is
>> currently no way to use the statistic match for load-balancing over
>> several SNAT sources; it can only be used in Shorewall t
On Wed, Oct 24, 2012 at 10:17 AM, Tom Eastep wrote:
> Sorry -- I missed this last part when I responded earlier. There is
> currently no way to use the statistic match for load-balancing over
> several SNAT sources; it can only be used in Shorewall to load-balance
> between uplinks.
>
> So you wil
On 10/24/2012 06:55 AM, Jason Wever wrote:
>
> Is this possible with Shorewall?
>
> Unfortunately, trying to do something like the below didn't work for
> us as iptables wasn't using each IP equally:
> iptables -t nat -I POSTROUTING -s 10.0.0.1 -o eth5 -j SNAT \
> --to-source 1.1.1.1-1.1.1.3
On 10/24/2012 06:55 AM, Jason Wever wrote:
> Hi All,
>
> Apologies if this has already been answered but my Google-fu was not
> turning anything up.
>
> I'm in the process of converting an existing iptables rule set from a
> shell script into Shorewall, and I haven't been able to really find a
> go
Hi All,
Apologies if this has already been answered but my Google-fu was not
turning anything up.
I'm in the process of converting an existing iptables rule set from a
shell script into Shorewall, and I haven't been able to really find a
good solution to handling a source NAT condition where outg
I.S.C. William wrote:
>For it is exactly what I want, block all access to the local network
>(loc) to internet (net) and similar as net2loc, that only can select
>that port open.
>
>You say that I need one more rule, I could mention that but I need
>to accomplish this?
You need to take a step
