Thanks Tom, imagine we have eth0 with 10.1.0.0/16 and eth1 with 10.0.0.0/8. Of course in eth1 I will have all the 10.0.0.0/8 subnets except the 10.1.0.0/16 one because it is on eth0. But will shorewall understand this by just using its detectnets feature?
Bye, Marco Tom Eastep wrote: > Marco Romano wrote: > >> Many thanks Paul, >> What if the nested zones are on different interfaces? >> > > If the zones are associated with different interfaces then by definition, > they cannot be nested. > > -Tom > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > ------------------------------------------------------------------------ > > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
