From: Vieri Di Paola via Shorewall-users
>
> So if I wanted to avoid using proxy arp on the WAN interface, and since the
> bulk 10.215.0.0/16 is
> really on the LAN interface then I could change gw1's enp11s0 IP settings to
> 10.215.144.92/32 with a
> route
On 08/07/2017 01:52 AM, Vieri Di Paola via Shorewall-users wrote:
>
>
> From: Vieri Di Paola via Shorewall-users
>
>>
>
>> So if I wanted to avoid using proxy arp on the WAN interface, and since the
>> bulk 10.215.0.0/16 is
>
>> really on the LAN interface th
From: Tom Eastep
>> Here's what I did in gw1's snat file:
>>
>> SNAT($IF_LAN_MASQ_ADDRESS) $IF_LAN_MASQ_SOURCE $IF_LAN
>>
>> The params file contains:
>>
>> IF_LAN=enp11s0
>> IF_LAN_MASQ_ADDRESS=10.215.144.92
>> IF_LAN_MASQ_SOURCE=172.16.0.2
>
> You
On 08/07/2017 11:16 AM, Vieri Di Paola via Shorewall-users wrote:
>
>
> From: Tom Eastep
>
>>> Here's what I did in gw1's snat file:
>>>
>>> SNAT($IF_LAN_MASQ_ADDRESS) $IF_LAN_MASQ_SOURCE $IF_LAN
>>>
>>> The params file contains:
>>>
>>> IF_LAN=enp11s0
>
On 8/6/2017 10:45 PM, Tom Eastep wrote:
> On 08/06/2017 12:14 PM, Matt Darfeuille wrote:
>> Hi,
>>
>> According to:
>>
>> http://shorewall.org/shorewall_extension_scripts.htm
>>
>> the value of 'SHAREDIR' and 'CONFDIR' are usable in extension script.
>>
>> If I put for example the following lines i
Signed-off-by: Matt Darfeuille
---
docs/shorewall_extension_scripts.xml | 18 ++
1 file changed, 6 insertions(+), 12 deletions(-)
diff --git a/docs/shorewall_extension_scripts.xml
b/docs/shorewall_extension_scripts.xml
index e71076e2e..3148691ce 100644
--- a/docs/shorewall_exten
On 08/05/2017 04:50 PM, Roland Schmid wrote:
> Hi All,
>
> I just can't get shorewall to send internet network traffic to my docker
> container.
>
> Inside my docker I'm running bind (53) and webmin (10001)
>
> If I'm on my server I can telnet to ports 53/10001 fine (docker
> container ip is 172
Hi,
My net interface gets it's ip address dinamically asigned by a dhcp server.
Sometime I need that address for SNAT, DNAT rules and so on...
I use a variable throughout Shorewall that is defined in the params file.
Everytime that this ip change, I need to change it manually.
I'm currently testi
On 08/07/2017 01:41 PM, Matt Darfeuille wrote:
> Signed-off-by: Matt Darfeuille
> ---
> docs/shorewall_extension_scripts.xml | 18 ++
> 1 file changed, 6 insertions(+), 12 deletions(-)
>
Applied.
Thanks, Matt!
-Tom
--
Tom Eastep\ Q: What do you get when you cross a
On 08/07/2017 01:45 PM, Matt Darfeuille wrote:
> Hi,
>
> My net interface gets it's ip address dinamically asigned by a dhcp server.
> Sometime I need that address for SNAT, DNAT rules and so on...
> I use a variable throughout Shorewall that is defined in the params file.
> Everytime that this ip
On 8/7/2017 10:51 PM, Tom Eastep wrote:
> On 08/07/2017 01:45 PM, Matt Darfeuille wrote:
>> Hi,
>>
>> My net interface gets it's ip address dinamically asigned by a dhcp server.
>> Sometime I need that address for SNAT, DNAT rules and so on...
>> I use a variable throughout Shorewall that is defi
It
On 08/07/2017 03:35 PM, Matt Darfeuille wrote:
>
>
> On 8/7/2017 10:51 PM, Tom Eastep wrote:
>> On 08/07/2017 01:45 PM, Matt Darfeuille wrote:
>>> Hi,
>>>
>>> My net interface gets it's ip address dinamically asigned by a dhcp server.
>>> Sometime I need that address for SNAT, DNAT rules and s
From: Tom Eastep
>
> there is no evidence in the dump that your rule was present.
Here's part of the output of shorewall -vv check:
Checking /etc/shorewall/snat...
[...]
Snat record "SNAT(10.215.144.92) 172.16.0.2 enp11s0" Checked
However, the following yield
13 matches
Mail list logo