On 2014-07-18, at 1:22 PM, Leandro Avila <leandro.av...@ymail.com> wrote:
> Hello,
>
> I guess the question I have is about your 'loc' zone.
>
> Since it is a single interface firewall I think you
> would pay attention to the
>
> FW to <Zone> and <Zone> to FW policies.
> and perhaps disable packet forwarding?
That is a good question, though I will be adding a VPN to this machine,
and as far as I know, I need packet forwarding on for that.
I was trying to see if I could define a “local only” zone, but that is
a different question/topic for another message later. :)
--
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
