On Tue, 1 Nov 2016 11:22:09 -0700 Tom Eastep <[email protected]> wrote:
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > On 11/01/2016 09:32 AM, Steven Jan Springl wrote: > > > Snat entry: > > > > SNAT(10.1.1.1:80:xxxx) 10.11.11.0/24 eth0 tcp > > > > Generates the iptables-restore rule: > > > > -A SHOREWALL -o eth0 -p 6 -s 10.11.11.0/24 -j SNAT --to-source > > 10.1.1.1:80:xxxx -m comment --comment "masq." > > > > Which produces the following error: > > > > iptables-restore v1.4.21: Invalid port:port syntax - use dash > > > > Steven, > > The attached patch catches this error on both the masq and snat files. > > Thanks! > - -Tom Tom Confirmed. the patch fixes the issue with the snat rule. I haven't tried a masq rule yet. ----------------------------------------------------------------------------------------- Snat rule: SNAT(10.1.1.1::random) 10.11.11.0/24 eth0 tcp Generates iptables-restore rule: -A SHOREWALL -o eth0 -p 6 -s 10.11.11.0/24 -j SNAT --to-source 10.1.1.1: --random -m comment --comment "masq." Which produces error message: iptables-restore v1.4.21: Port `' not valid Steven. ------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
