Steven Jan Springl wrote: > Tom > > Testing a script to compare the iptables rules generated by shorewall-shell > and shorewall-perl has hightlighted the following discrepancy: > > Rule: > > REDIRECT lan 3128 tcp 443 - 10.1.1.1,10.1.1.2 > > > when compiled with shorewall-shell generates: > > -A lan2fw -p tcp -m tcp --dport 3128 -j ACCEPT > > > when compiled with shorewall-perl generates: > > -A lan2fw -p tcp -m tcp --dport 3128 -m conntrack --ctorigdst 10.1.1.1 > -j > ACCEPT > -A lan2fw -p tcp -m tcp --dport 3128 -m conntrack --ctorigdst 10.1.1.2 > -j > ACCEPT >
Shorewall-perl is actually the more correct. Roberto: This might be a good project for you to get your feet wet with designing and coding a bug fix on your own. It is a non-critical bug so it's not anything that needs to be changed ASAP. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
