On Friday 01 December 2006 17:51, Tom Eastep wrote: > > Hi Tom, > > What I meant by doing changes was the changes required for an upgrade > > from 3.0 to 3.2 (macro.HTTP, ...). I did no changes to the rules file. > > I hadn't realised "DEST" and "SOURCE" shouldn't be substituted. > > > > So this is what I have now: > > > > rules: > > pptp/DNAT net dmz:192.168.253.2 > > I could have sworn that when you first posted, you had pptp/ACCEPT. > > > macro: > > PARAM - - tcp 1729 > > PARAM - - 47 > > PARAM DEST SOURCE 47 > > > > error: > > ERROR: DNAT rules require a server address; rule: "DNAT dmz:192.168.253.2 > > net 47 - - - - -" > > > > I should have mentioned I was using DNAT, sorry about that. > > Then make the TARGET in the last rule ACCEPT rather than PARAM. > > -Tom
I did have an "ACEPT" rule rather than a DNAT... copied the VPN line from my LAN rather than the one for the WAN... sorry again. In any case, it works like a charm now. Thank you so much for your help. I don't know if I did it right but I created 2 seperate macros, one for an "ACCEPT" rule w/ "PARAM DEST SOURCE 47" and another for a "DNAT" rule w/ "ACCEPT DEST SOURCE 47" Regards, -Ed ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
