Sassy Natan wrote: > but I not sure I got what Tom means in when he says the'start' extension > script.
I've not used it, but IIRC you can have Shorewall run a script when it's started. IN this, you put whatever commands you want - eg use iptables to add the chain(s) you want. > Wonder is there is no auto way to do so? so when I create a rule > - a correspondingaccountingchain will be created as well. Depending on your rules (they'd need to be of a very similar structure), you might consider writing yourself a "rules builder" script. Define your rules in a manner that "works for you", and have your script parse that and generate both the rules and accounting entries for Shorewall. Then you simply edit your meta-rules file and rebuild the Shorewall config. The files you generate only need to be the parts this problem affects - and can then be insterted with the include directive in the appropriate Shorewall files. ------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
