On Saturday 18 September 2010 01:12:09 Tom Eastep wrote: > On 9/17/10 4:41 PM, Tom Eastep wrote: > > On 9/17/10 4:35 PM, Steven Jan Springl wrote: > >> Tom > >> > >> When routestopped contains: > >> > >> eth3 192.168.0.0/29,10.1.1.1 notrack > >> > >> After 'shorewall start' and 'shorewall clear' commands have been > >> executed, iptables-save shows the following rules are still active: > >> > >> raw > >> > >> :PREROUTING ACCEPT [0:0] > >> :OUTPUT ACCEPT [0:0] > >> > >> -A PREROUTING -s 192.168.0.0/29 -i br1 -m physdev --physdev-in eth3 -j > >> NOTRACK -A PREROUTING -s 10.1.1.1/32 -i br1 -m physdev --physdev-in eth3 > >> -j NOTRACK -A OUTPUT -d 192.168.0.0/29 -o br1 -m physdev --physdev-out > >> eth3 --physdev-is-bridged -j NOTRACK > >> -A OUTPUT -d 10.1.1.1/32 -o br1 -m physdev --physdev-out > >> eth3 --physdev-is-bridged -j NOTRACK > >> COMMIT > >> > >> Is this correct? > > > > No. > > > > I'll work on a fix... > > This should fix it. > > Thanks, > -Tom
Tom That's fixed it. Thanks. Steven. ------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
