Hi Tom,
I am running Shorewall-perl version 4.4.6-1 on Debian
Tested on one of my other firewalls I get the desired result!? :)
0 0 log1 tcp -- * * 58.108.209.135
180.233.128.7 [goto] tcp spt:80 dpt:8000
0 0 DNAT tcp -- * * !58.108.209.135
180.233.128.7 tcp dpt:80 to:10.240.9.7
I will check for typing errors. :P
Kind regards,
Trent O'Callaghan
Network Manager
www.nearmap.com
-----Original Message-----
From: Tom Eastep [mailto:[email protected]]
Sent: Thursday, 18 February 2010 10:41 PM
To: [email protected]; Shorewall Users
Subject: Re: [Shorewall-users] DNAT src inet:58.108.209.135 rule failling to
appear in iptables (version 4.4.6-1)
Trent O'Callaghan wrote:
> Hi,
>
> Today I added to rules:
> DNAT:info inet:58.108.209.135 hw001:10.240.1.7:8000
tcp
> 8000 80 180.233.128.7
> Followed by "sudo shorewall check" [OK] then "sudo service shorewall
> restart" [OK]
>
> But "sudo iptables -v -t nat -n -L inet_dnat" showed no change
> [Shorewall BUG?] or have I misread "man shorewall-rules"?
Please tell us the version of Shorewall that you are running and, if earlier
than 4.4.0, tell us if you are running Shorewall-shell or Shorewall-perl.
Without this information, we can't give you accurate instructions for
troubleshooting this problem.
Thanks,
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
