Tom Eastep pisze: >> [EMAIL PROTECTED]:~# ip rule add from 1.1.1.1 to 10.0.0.0/8 priority 1000 >> table 5 >> [EMAIL PROTECTED]:~# ip rule add from 1.1.1.1 to 0.0.0.0/0 priority 1000 >> table >> main >> [EMAIL PROTECTED]:~# ip rule del from 1.1.1.1 to 0.0.0.0/0 priority 1000 >> [EMAIL PROTECTED]:~# ip rule ls >> 0: from all lookup 255 >> 1000: from 1.1.1.1 to 10.0.0.0/8 lookup 5 >> 32766: from all lookup main >> 32767: from all lookup default >> [EMAIL PROTECTED]:~# >> >> Looks like something is broken with your kit...
Crap! You are right. On older systems it works like in Your example, on newer Fedoras (6,7) it works in a way I presented. And it is not a matter of iproute2, but kernel or other system components or configuration... It looks like the patch adding transformation from '-' to '0.0.0.0/0' is not needed... Thanks for Your help and sorry for wasting Your time. > > For 4.0.4, I've added a 'DELETE_THEN_ADD' option in shorewall.conf -- > setting that option to 'No' will work around this brokenness. Thank You very much :). Regards. -- Artur ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
