Andrzej Odyniec wrote:
>
> Anyway, for BGP on number of interfaces we need notion: "group of interfaces"
> instead of one interface only. Ofcourse, BGP on client side is rare solution
> and ISPs are using mainly Cisco. But this needn't be to the end of World...
>
With the solution that I implemented (allowing a list of interfaces in
the INTERFACE columns of nat and masq file), you can use variables to
name interface groups:
/etc/shorewall/params:
NET=eth0,eth1
/etc/shorewall/masq:
#INTERFACE SOURCE ADDRESS ...
$NET ...
I'll be releasing 4.1.4 on 1/26/2008; it will include the change.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
