On 11/25/2012 07:09 PM, Mr Dash Four wrote:
>
>> Done -- it is commit dbfc8057077950a909d27a5ce1b00f802730a1ff.
> What's the url for that?
>
>> Duh -- tested 'P' and 'PO' but not 'O'; patch attached.
> Hehe, zeros and O's - there is a bit of a difference between the two, even in
> perl. Get yourself a proper font so that you could easily see that difference
> more easily...Still doesn't work though:
>
> conntrack
> ~~~~~~~~~
> DROP:O :+baddies-set[dst]
>
> I am getting "ERROR: Unknown Interface (:+baddies-set[dst])".
>
> "SOURCE (formats 3) - {-|[:interface][:address-list}" should really be
> "SOURCE (formats 3) - {-|[:interface][:address-list]}", though see my
> thoughts on this format below.
The manpage is wrong (copy/paste error). The rule generator never
accepts leading semicolons in a SOURCE or DEST.
SOURCE (format 3) - [interface[:address-list]]|[address-list]
>
>>> Why can't you get rid of the ":chain-designator" from ACTION (FORMAT
>>> 3) and have the following in SOURCE instead:
>>
>> I considered that approach but rejected.
>>
>> 1) A chain is not a SOURCE and using a chain-designator in place of
>> a zone is not intuitive.
> You already use "all", "all-" and "$FW" to do the same thing - all
> you have to do is substitute/add ":PO" instead of/in addition to "all" and
> do the same for "all-" and "$FW". I am no perl expert, but that can't be
> very difficult to implement and should not involve "hackery", as you put it.
>
'all' and 'all-' have been reserved names from day one and $FW is a
simple shell variable that expands to the name of a zone. 'PO', 'P' and
'O' are not reserved.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Monitor your physical, virtual and cloud infrastructure from a single
web console. Get in-depth insight into apps, servers, databases, vmware,
SAP, cloud infrastructure, etc. Download 30-day Free Trial.
Pricing starts from $795 for 25 servers or applications!
http://p.sf.net/sfu/zoho_dev2dev_nov
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel
