JJB wrote:
If the device name "eth0" is changed to "eth5", would the simple solution to update shorewall be to search all shorewall config files for eth0 and replace with eth5, restart shorewall and expect it to work exactly as before?
Yes. You can also anticipate these sorts of changes and do what I do in my params file:
[EMAIL PROTECTED]:~> grep _IF ShorewallConfigs/gateway/params
INT_IF=br0
DMZ_IF=eth3
EXT_IF=eth0
WIFI_IF=eth1
TEST_IF=eth4
TEST1_IF=eth5
[EMAIL PROTECTED]:~>
Then in my other config files, I have '$INT_IF' rather than 'br0', etc.
[EMAIL PROTECTED]:~> grep _IF ShorewallConfigs/gateway/interfaces
loc $INT_IF detect dhcp,logmartians=1,routeback,bridge
dmz $DMZ_IF detect logmartians=1
wifi $WIFI_IF detect dhcp,maclist,mss=1400
net ${EXT_IF} detect dhcp,logmartians=1,blacklist
loc $TEST_IF detect optional
loc $TEST1_IF detect optional
[EMAIL PROTECTED]:~>
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
