On 9/17/10 4:35 PM, Steven Jan Springl wrote: > Tom > > When routestopped contains: > > eth3 192.168.0.0/29,10.1.1.1 notrack > > After 'shorewall start' and 'shorewall clear' commands have been executed, > iptables-save shows the following rules are still active: > > raw > :PREROUTING ACCEPT [0:0] > :OUTPUT ACCEPT [0:0] > -A PREROUTING -s 192.168.0.0/29 -i br1 -m physdev --physdev-in eth3 -j > NOTRACK > -A PREROUTING -s 10.1.1.1/32 -i br1 -m physdev --physdev-in eth3 -j NOTRACK > -A OUTPUT -d 192.168.0.0/29 -o br1 -m physdev --physdev-out > eth3 --physdev-is-bridged -j NOTRACK > -A OUTPUT -d 10.1.1.1/32 -o br1 -m physdev --physdev-out > eth3 --physdev-is-bridged -j NOTRACK > COMMIT > > Is this correct?
No. I'll work on a fix... Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
