Shorewall Guy wrote: > Shorewall Guy wrote: >> Brad Clarke wrote: >> >>> I tried leaving it blank and allowing it to happen for all interfaces >>> but that didn't seem to include $FW, so I need at least 2 rules. Is >>> there a way I can specify a variable for the DEST column to make the >>> repeated rules easier to maintain? >> No. > > After a night's sleep, I realize that there *is* a way to have a single > rule for both passthrough and router-generated traffic: place the rule > in the POSTROUTING chain (Use the ':T' chain designator).
True -- another way is to use 'classify' rules which are always inserted into the POSTROUTING chain. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
