Tom Eastep wrote:
> JJB wrote:
>> If the device name "eth0" is changed to "eth5", would the simple
>> solution to update shorewall be to search all shorewall config files
>> for eth0 and replace with eth5, restart shorewall and expect it to
>> work exactly as before?
>
> Yes. You can also anticipate these sorts of changes and do what I do
> in my params file:
>
> [EMAIL PROTECTED]:~> grep _IF ShorewallConfigs/gateway/params
> INT_IF=br0
> DMZ_IF=eth3
> EXT_IF=eth0
> WIFI_IF=eth1
> TEST_IF=eth4
> TEST1_IF=eth5
> [EMAIL PROTECTED]:~>
>
> Then in my other config files, I have '$INT_IF' rather than 'br0', etc.
>
> [EMAIL PROTECTED]:~> grep _IF ShorewallConfigs/gateway/interfaces
> loc $INT_IF detect dhcp,logmartians=1,routeback,bridge
> dmz $DMZ_IF detect logmartians=1
> wifi $WIFI_IF detect dhcp,maclist,mss=1400
> net ${EXT_IF} detect dhcp,logmartians=1,blacklist
> loc $TEST_IF detect optional
> loc $TEST1_IF detect optional
> [EMAIL PROTECTED]:~>
>
> -Tom
> ------------------------------------------------------------------------
Awesome, thanks!
- Joel
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
