On 12/11/2015 08:49 AM, Tom Eastep wrote: > On 12/11/2015 05:12 AM, Falk Hackenberger wrote: >> Hello, >> >> with iptables i do: >> >> iptables -t nat -A POSTROUTING -o eth0 -s 192.168.1.2 -p udp --sport >> 123 -j SNAT --to 192.168.1.4:1234 >> >> How I can do that with a shorewall 4.6.4? >> There is no source port in masq file. >> > > In shorewall.conf, set INLINE_MATCHES=Yes. Then, in /etc/shorewall/masq: > > eth0 192.168.1.2 192.168.1.4:1234 ; --sport 123 >
Note that setting INLINE_MATCHES=Yes requires that you also change any
entries that use the alternate-input format after ':' to be replaced
with alternate input using { .... }/
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
