-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 03/17/2017 10:49 AM, [email protected] wrote: >> In the remote compile/push case, from my desktop > > Reading at > > http://shorewall.net/manpages/shorewall.html > > this > > sh shorewall remote-reload -c -s ${MY_FIREWALL} > > is equivalent to > > /sbin/shorewall compile -e directory directory/firewall && \ scp > directory/firewall directory/firewall.conf \ > root@${MY_FIREWALL}:/var/lib/shorewall-lite/ && \ ssh > root@${MY_FIREWALL} '/sbin/shorewall-lite reload' > > I suppose I could use the expansion instead, modified to > > /sbin/shorewall compile -e directory directory/firewall && \ scp > directory/firewall directory/firewall.conf \ > root@${MY_FIREWALL}:/var/lib/shorewall-lite/ && \ ssh > root@${MY_FIREWALL} 'MY_CURRENT_IP=$(cat /etc/MY_CURRENT_IP) > /sbin/shorewall-lite reload' > > although I'm not sure about the syntax fcor the remote expansion > of > > $(cat /etc/MY_CURRENT_IP) > > > Is that modified expansion the best way to do that? Or is there a > way to modify the command itself > > sh shorewall remote-reload -c -s ${MY_FIREWALL} > >
You don't need to pass anything if you just use &<interface> (e.g., ð0). The generated script determines the address *at runtime*. If the interface might not have an address (it might be down), then use the %<interface> form instead. - -Tom Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.net \________________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJYzCWDAAoJEJbms/JCOk0QZzkP/jrX6YKrylDR57OrP+S3Ou2b R4QWULGNpyH7uw2fDD6VjtSpBwJRIwle1u7cD7w8SPbqZLfSgSFyiW42DPHIuIT2 rzd/PA3H2hgpWIMvXOmV3QjWpOppAUUR78VYzqBXI54o6PEqxsTaJ1e3KuIDoxnH ZPCz575EJ6vDZme4WMz1NQwVp+u7HKKOwoDFN/gm5UipUMsEKcZTsNQXSGszn1m2 i4AuD7rxvBcwXU/ZqyTQczJNWHe7grKpq3j7G90WtpJ76iQzMvCfNE0E0hauxVsF NdqOQoxoF2AEzb4d++qcs1LQTgov8M9f8batUiyvEouUZVxozmG1eCm5Nbs3ompW w+iEd4D+D0VCCpHEIPBe6nmx4N5OXpOQBiPh05WpaCe8gGofJ10pkFUUKBUPeRjj Lwn3EgcK3qW/W2UFRkLvP7HI8EHATWYjYH0LGlEigShK+fRnnoJ0zb3pdwCvPi2p GqwGXtwjEoHpomqkWjIt2y2YGjvfSz5Mfwu7BUsQSkYRkVsrbuycaBx9Vw+BecQP ece2rnnfYkbd5YopMbIU/eePRUuw8dQTLtqkxv9KTIS0b3B7yhrqjCZqeNDALGfS AJHP9AKxNNk1UgjImCiWMD/xV1AFKNbQBBytBuM7tgYGlcYEdXkA//+1bvnKmW3g c8H+ILwOv3cnPAuOuYPM =sWiW -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
