Wilson Kwok wrote: > my configure is: > > hosts: > loc1 eth0:10.0.15.0/24 > > zones: > loc1 ipv4 > policy: > loc loc1 ACCEPT > loc1 loc ACCEPT > > interfaces: > loc eth0 detect tcpflags,detectnets,nosmurfs > > What wrong in my setting? >
Wilson,
I doubt that you needed two zones at all -- most likely, you were just missing
the 'routeback' option on eth0 in /etc/shorewall/interfaces.
With two zones, the most likely problem is that you have declared loc1 after loc
in /etc/shorewall/zones. The best way to define a subzone is:
loc1:loc ipv4
That way, you will get an error if you get the order of the zones wrong.
If that isn't the problem, then please submit a full problem report as described
at http://www.shorewall.net/support.htm (how many times have I typed those words
to you? seems like 1,0000s).
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
