On þri, 2008-05-20 at 21:43 +1000, Paul Gear wrote:
> An alternative is to put those IP addresses in params like this:
>
> HIIS=130.208.67.0/24,130.208.68.0/22,130.208.72.0/21,130.208.96.0/19,130.208.128.0/18
>
> and then add a rule that checks for it, e.g.:
>
> ACCEPT any:$HIIS $FW tcp 80
>
> Or something like that.
Thanks. That does it.
I did not know that it is possible to define arbitrary
variables in Shorewall.
Then maybe I can change my policy to:
$HIIS $FW ACCEPT
BTW: I would have given the name variables to this
file. Not params.
--
Kindest Regards, Anna Jonna Ármannsdóttir, %& A: Because people read
from top to bottom.
Unix System Aministration, Computing Services, %& Q: Why is top posting bad?
University of Iceland.
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
