with
/zones
fw firewall
net ipv4
lan ipv4
vpn1 ipv4
/interfaces
?FORMAT 2
#ZONE INTERFACE OPTIONS
net EXT_IF
physical=eth0,tcpflags,nosmurfs,logmartians=1,sourceroute=0
vpn1 tun+ optional
lan INT_IF physical=eth1,logmartians=1
@ compile
ERROR: A provider interface must have at least one associated zone
/usr/local/etc/shorewall/client/providers (line 2)
changing
/providers
#NAME NUMBER MARK DUPLICATE INTERFACE GATEWAY
OPTIONS COPY
- isp 1 - main eth0 detect
balance -
+ isp 1 - main EXT_IF detect
balance -
vpn 2 - main tun1 detect
fallback -
fixes that compile error. not clear to me why
next error appears
ERROR: The DUPLICATE column must be empty when USE_DEFAULT_RT=Yes
/usr/local/etc/shorewall/core.presence-group.net/IPv4/providers (line 11)
changing
/providers
#NAME NUMBER MARK DUPLICATE INTERFACE GATEWAY
OPTIONS COPY
- isp 1 - main EXT_IF detect
balance -
- vpn 2 - main tun1 detect
fallback -
+ isp 1 - - EXT_IF detect
balance -
+ vpn 2 - - tun1 detect
fallback -
fixes that too
there's no compile error. not clear if it's correct.
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
