On 2013-04-26 23:18:11 +0000, Tom Eastep said: > That's fascinating, given that I gave you a bad rule. What I wanted you > to do was: > > TPROXY(3129) eth0 !<address of eth0> tcp 80 > > Same with br0: > > TPROXY(3129) br0 !<address of br0> tcp 80 > > -Tom
I realize this is a couple of weeks old, but... I noticed that the current documentation (http://www.shorewall.net/Shorewall_Squid_Usage.html#TPROXY) has the following syntax in a note: TPROXY(3129) eth1:!192.0.2.144 0.0.0.0/0 tcp 80 On the mailing list, you've told me to use: > TPROXY(3129) eth0 !<address of eth0 tcp 80 Does the documentation at www.shorewall.net need to be updated? Which one is the correct syntax? (For the record, the one Tom gave above is the one that works for me; the one documented at www.shorewall.net does not work if I connect via IPv4 to the web server on $FW.) -- Troy Telford ------------------------------------------------------------------------------ AlienVault Unified Security Management (USM) platform delivers complete security visibility with the essential security capabilities. Easily and efficiently configure, manage, and operate all of your security controls from a single console and one unified framework. Download a free trial. http://p.sf.net/sfu/alienvault_d2d _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
