Art Mandler wrote: > > Do I now need to create a new set of policies and rules for the new > gateway?
No. > If I just make the interface for the new gateway a member of > the "net" zone will all the same rules apply and work? Yes. > Or do I need to > create a "net2" zone for the new interface with its own policies? No. > > When I created the new table in the providers file, I did not use the > copy option, as I was concerned it would copy the default gateway from > the main table, too. Is that a correct concern? No. > Also, the track option > errors out, even though all the connmark modules are loaded. "It doesn't work" gives you sympathy but no help. Details, please. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
