Tom Eastep wrote: > Pompon wrote: > >> So the rules I need to implement on A is : >> >> iptables -A FORWARD -s B -d C -j ACCEPT >> iptables -A FORWARD -s C -d B -j ACCEPT >> >> As I don't want to do DNAT, masquerade or portforwardinf but just >> forwarding, a deep search into the conf, doc and mailing lists doesn't help >> me on how to implement these simple rules in shorewall. >> >> Do you have any idea? > > Use ACCEPT rules.
e.g., ACCEPT z1:B z2:C ACCEPT z2:C z1:B Where z1 is the zone containing address B and z2 is the zone containing address C. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
