On Tue, 2010-08-31 at 18:18 -0700, peasth...@shaw.ca wrote: > Folk, > > Quoting from "http://www.shorewall.net/manpages/shorewall-nesting.html";, > "The preferred way [to distinguish zones having ppp interfaces] is > to use the ifname pppd option to change the 'net' interface to > something other than ppp0. That way, it won't match ppp+." > > With a rudimentary skill in udev rules, I'll hypothesize that > renaming by udev is also satisfactory; and it applies to other > interfaces as well. This is on my Linux router. > > # dalton:/etc/shorewall/interfaces > #ZONE INTERFACE BROADCAST OPTIONS > net eth0 detect ... > loc eth1 detect ... > loc eth3 detect ... > loc eth5 detect ... > loc ppp+ > # This is for the openvpn tunnel. > vpn tun0 > #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE > > With eth0 renamed to NetEth and ethn renamed to LocEthn > for all n, this would be a tidy interfaces. > > # dalton:/etc/shorewall/interfaces > #ZONE INTERFACE BROADCAST OPTIONS > net NetEth detect ... > loc LocEth+ detect ... > loc ppp+ > # This is for the openvpn tunnel. > vpn tun0 > #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE > > Adding another LocEthn wouldn't require a change in /etc/shorewall/interfaces. > > Regards, ... Peter E.
How about a sample of the udev rules that you wrote? Jerry ------------------------------------------------------------------------------ This SF.net Dev2Dev email is sponsored by: Show off your parallel programming skills. Enter the Intel(R) Threading Challenge 2010. http://p.sf.net/sfu/intel-thread-sfd _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
