Re: [Shorewall-users] Shorewall 3.9.4

Steven Jan Springl Sun, 29 Apr 2007 05:12:53 -0700

Tom

Just one last observation on aliases.


When interface eth0 has IP address 192.168.0.4 and the following rules are 
defined:

NAT
        10.1.1.1  eth0  192.168.1.1  yes  yes

MASQ

        eth0    192.168.0.0/24  detect

the shorewall-shell compiler generates the rule:

-A eth0_masq -s 192.168.0.0/255.255.255.0 -j SNAT --to-source 192.168.0.4

whereas shorewall-perl generates the invalid rule:

-A eth0_masq -s 192.168.0.0/24 -j SNAT --to-source 192.168.0.4 --to-source 
10.1.1.1

Steven.


 

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Re: [Shorewall-users] Shorewall 3.9.4

Reply via email to