You should be able to find many examples of this on the web. Put your variables in /etc/shorewall/params.
params: LAN4_IF=lan4 lan4_net=192.168.4.0/24 WIFI_IF=wifi wifi_net=192.168.6.0/24 zimbra_ip=192.168.56.101 INET2_IP2=xxx.yyy.zzz.250 rules: ?COMMENT zimbra virtualbox machine DNAT all vbox:$zimbra_ip tcp ssh - $INET2_IP2 hosts: lan4 $LAN4_IF:$lan4_net wifi $WIFI_IF:$wifi_net Bill On 12/5/2017 2:57 PM, Rommel Rodriguez Toirac wrote:
Hello; is possible to use something like ACL or maybe variable declarations? Let me explaint. In my shorewall rules I put something like this: ACCEPT:info dmz:172.16.120.1 loc:192.168.41.6 tcp 80 192.168.41.6 is the IP of PC named ROMMEL. Is there some way to write the name of PC not the IP? Or maybe to say that: ACCEPT:info dmz:172.16.120.1 loc:SERVIDOR_WEB-1 tcp 80 where SERVIDOR_WEB-1 is declarated with IP 192.168.41.6 in somewhere in shorewall. Is possible to do this two examplea? Rommel Rodriguez Toirac romme...@nauta.cu ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
