[email protected] wrote: > Def. Quota Tom Eastep <[email protected]>: > >> I see no reason why the entry in tcrules should not work just like your >> manually-added rule. They are exactly the same rule at the iptables >> level -- in the case of the tcrules entry, the rule is only traversed on >> the first output packet in a connection while your rule is traversed by >> every packet originating from the firewall. > > Exact, this is true. > The two rules have the same behavior... > > With the tcrules and only the second line (nat) it works ok
You mentioned that it doesn't work at all without that rule. That suggests to me that you are missing the masq rules described at http://www.shorewall.net/MultiISP.html#id541360 -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Crystal Reports - New Free Runtime and 30 Day Trial Check out the new simplified licensing option that enables unlimited royalty-free distribution of the report engine for externally facing server and web deployment. http://p.sf.net/sfu/businessobjects
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
