Robert Moskowitz wrote:
Tom Eastep wrote:Well, this is rather wrong per that URL. The format that I was finding was $EXT_IFRobert Moskowitz wrote:Makes sense. there are a number of ports here that I do not recognize and are not in /etc/services like 57. Is there somewhere to get a mapping?BLACKLIST_LOGLEVEL='' /etc/shorewall/blacklist: - udp 1024:1033,1434 - tcp 57,1433,1434,2401,2745,3127,3306,3410,48Is ${EXT_IF} a system variable in place of the actual external interface names?/etc/shorewall/interfaces: net ${EXT_IF} detect logmartians=1,blacklistSee http://www.shorewall.net/configuration_file_basics.htm#Variables.
Shorewall accepts both. Apparently Webmin doesn't.
I then went to http://www.shorewall.net/manpages/shorewall-interfaces.html as I should have, and just added the logmartians to the definition of my public interface and it compiled.Thanks. Learned some more.
Except that logmartians had nothing to do with your problem. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
