Re: [Shorewall-users] shorewall 5.0.14.1 not creating DOCKER nat chain?

On Thu, Feb 16, 2017 at 12:00 AM, Tom Eastep <teas...@shorewall.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > On 02/13/2017 11:46 PM, Raphael Bauduin wrote: > > > > > > On Thu, Feb 9, 2017 at 12:47 PM, Raphael Bauduin > > <rbli..

Re: [Shorewall-users] shorewall 5.0.14.1 not creating DOCKER nat chain?

On Thu, Feb 9, 2017 at 12:47 PM, Raphael Bauduin <rbli...@gmail.com> wrote: > > > On Wed, Jan 25, 2017 at 9:35 AM, Raphael Bauduin <rbli...@gmail.com> > wrote: > >> >> >> On Wed, Jan 25, 2017 at 1:50 AM, Tom Eastep <teas...@shorewall.net

Re: [Shorewall-users] shorewall 5.0.14.1 not creating DOCKER nat chain?

On Wed, Jan 25, 2017 at 9:35 AM, Raphael Bauduin <rbli...@gmail.com> wrote: > > > On Wed, Jan 25, 2017 at 1:50 AM, Tom Eastep <teas...@shorewall.net> wrote: > >> -BEGIN PGP SIGNED MESSAGE- >> Hash: SHA256 >> >> On 01/24/2017 03:40 AM, Rapha

Re: [Shorewall-users] shorewall 5.0.14.1 not creating DOCKER nat chain?

On Wed, Jan 25, 2017 at 1:50 AM, Tom Eastep <teas...@shorewall.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > On 01/24/2017 03:40 AM, Raphael Bauduin wrote: > > Hi, > > > > I'm running shorewall 5.0.14.1 on centos 7.3.1611, and I have

[Shorewall-users] shorewall 5.0.14.1 not creating DOCKER nat chain?

Hi, I'm running shorewall 5.0.14.1 on centos 7.3.1611, and I have enabled docker in shorwall.conf: # grep DOCKER shorewall.conf DOCKER=Yes I have defined a zone for docker: # grep dock * interfaces:dock docker0 bridge policy:dock all REJECT info zones:dock ipv4 when I start

[Shorewall-users] tcclasses: why need to mark in POSTROUTING?

Hi, I have shorewall configured on my gateway to limit incoming http traffic, and it didn't work until I configured the marking in the POSTROUTING. Here is the config I had (which didn't work): In shorewall.conf: MARK_IN_FORWARD_CHAIN=No In tcrules: # Mark http with mark 8 8 0.0.0.0/0

Re: [Shorewall-users] Traffic shaping problem after upgrade to 4.4

On Fri, Apr 13, 2012 at 4:40 PM, Tom Eastep teas...@shorewall.net wrote: On 04/13/2012 06:24 AM, Raphael Bauduin wrote: Hi, I've upgraded a debian server running shorewall, which installed shorewall 4.4.11.6-3+squeeze1. It runs fine, except for the traffic shaping. I get this error Setting

[Shorewall-users] Traffic shaping problem after upgrade to 4.4

Hi, I've upgraded a debian server running shorewall, which installed shorewall 4.4.11.6-3+squeeze1. It runs fine, except for the traffic shaping. I get this error Setting up Traffic Control... TC Device eth3 defined. TC Device bond0 defined. TC Device eth2 defined. TC Class 1:11

[Shorewall-users] tc advice: ceil value

Hi, I'm setting up traffic shaping with shorewall, and I have one question about the ceil values to set in tcclasses. The outgoing interface is defined like this in tcdevices: $IF_NET 4000kbit4000kbit I've done some tests with http and https downloads to check that all is