On Wed, 2 Nov 2016 19:27:17 -0700 Tom Eastep <[email protected]> wrote:
> > > -------------------------------------------------------- > > > > Snat rule: > > > > SNAT(0) 10.1.2.0/24 eth0 tcp > > > > produces error message: > > > > iptables-restore v1.4.21: Port '0' not valid > > > > Similarly snat rule: > > > > SNAT(0-10) 10.1.2.0/24 eth0 tcp > > > > produces error message: > > > > iptables-restore v1.4.21: Port '0-10' not valid > > > > -------------------------------------------------------- > > > > Snat rule: > > > > SNAT(:persistent) 10.1.2.0/24 eth0 tcp > > > > Generates iptables-rule: > > > > -A SHOREWALL -o eth0 -p 6 -s 10.1.2.0/24 -j SNAT --persistent > > > > Which produces errror message: > > > > iptables-restore v1.4.21: SNAT: option "--to-source" must be > > specified > > > > A similar problem occurs with the following snat rule: > > > > SNAT(:random) 10.1.2.0/24 eth0 tcp > > > > The attached patch seems to catch these errors. > > Thanks again, > > - -Tom Tom Confirmed, the patch fixes the issues. ----------------------------------------------------------------------------------------- In the attached config. action.unat produces the following messages: Compiling /etc/shorewall97/snat... Compiling /etc/shorewall97/action.unat for chain unat... Use of uninitialized value $list in pattern match (m//) at /usr/share/shorewall/Shorewall/Config.pm line 2006. Use of uninitialized value $list in split at /usr/share/shorewall/Shorewall/Config.pm line 2008. Steven.
shorewall97.tar.gz
Description: application/gzip
------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
