Tom In the attached minimal config. SNAT rule:
SNAT(10.1.1.1-10.1.1.4:500-600:persistent) 10.11.11.0/11 eth0,eth1,br0::!1.1.1.1 tcp 110,1,2,34,5,6,:2,65000:,200:210 Generates the following iptables rule: -A SHOREWALL -o br0 -p 6 -s 10.11.11.0/11 ! -d 1.1.1.1 -m multiport --dports 110,1,2,34,5,6,0:2,65000:65535,200:210 -j SNAT --to-source 10.1.1.1-10.1.1.4:500-600 --persistent --to-source 10.1.1.1-10.1.1.4:500-600 --persistent --to-source 10.1.1.1-10.1.1.4:500-600 --persistent -m comment --comment "masq." Which produces the following iptables-restore error: iptables-restore v1.4.21: SNAT: Multiple --to-source not supported Steven.
shorewall93.tar.gz
Description: application/gzip
------------------------------------------------------------------------------ The Command Line: Reinvented for Modern Developers Did the resurgence of CLI tooling catch you by surprise? Reconnect with the command line and become more productive. Learn the new .NET and ASP.NET CLI. Get your free copy! http://sdm.link/telerik
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
