On Wed, 2 Nov 2016 15:26:50 -0700 Tom Eastep <[email protected]> wrote:
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > On 11/02/2016 03:03 PM, Steven Jan Springl wrote: > > Tom > > > > Snat rule: > > > > SNAT+(:) 10.1.2.0/24 eth0 tcp > > > > Generates iptables-restore rule: > > > > -A SHOREWALL -o eth0 -p 6 -s 10.1.2.0/24 -j SNAT --to-source : > > > > Which produces error message: > > > > iptables-restore v1.4.21: Port `' not valid > > > > Steven, > > The attached patch flags this case. > > Thanks, > - -Tom > - -- Tom Confirmed, the patch fixes the issue. -------------------------------------------------------- Snat rule: SNAT(0) 10.1.2.0/24 eth0 tcp produces error message: iptables-restore v1.4.21: Port '0' not valid Similarly snat rule: SNAT(0-10) 10.1.2.0/24 eth0 tcp produces error message: iptables-restore v1.4.21: Port '0-10' not valid -------------------------------------------------------- Snat rule: SNAT(:persistent) 10.1.2.0/24 eth0 tcp Generates iptables-rule: -A SHOREWALL -o eth0 -p 6 -s 10.1.2.0/24 -j SNAT --persistent Which produces errror message: iptables-restore v1.4.21: SNAT: option "--to-source" must be specified A similar problem occurs with the following snat rule: SNAT(:random) 10.1.2.0/24 eth0 tcp Steven. ------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
