N dhert wrote: > Can one specify a LOG:warning 'rule' also between systems in the same > zone, e.g. > LOG:warning loc loc:123.112.66.100 tcp 80 >
Sure -- provided that you have configured things such that at least some loc->loc traffic is routed through the firewall (or passes through a bridge on the firewall). If traffic is routed out of the same interface that it arrived on (such as would be the case with a bridge), you must define the interface with the 'routeback' option in /etc/shorewall/interfaces. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ SOLARIS 10 is the OS for Data Centers - provides features such as DTrace, Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW http://p.sf.net/sfu/solaris-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
