I've followed the brouter example and now need some clarification regarding the 'params' file. In the example, 'NET' is set using NET=pub:!$SERVERS.
In my Shorewall (4.4.11.1) configuration, Shorewall complaints during startup with message: shorewall[15246]: ERROR: Unknown Interface (! 10.0.2.5,10.0.2.26,10.0.2.51,10.0.2.52,10.0.2.53,10.0.2.54,10.0.2.55,10.0.2.252,10.0.2.253,10.0.2.254) : /etc/shorewall/rules (line 19) ================= shorewall/params ================= SERVERS=10.0.2.5,10.0.2.26,10.0.2.51,10.0.2.52,10.0.2.53,10.0.2.54,10.0.2.55,10.0.2.252,10.0.2.253,10.0.2.254 WR0=pub:$SERVERS #Use in place of 'wr0' in rule DEST NET=pub:!$SERVERS #Use in place of 'net' in rule DEST ================= shorewall/rules (line 19) ================= ACCEPT:info $FW $NET:12.x.y.z tcp 8000 ================= shorewall/zones ================= fw firewall pub ipv4 net:pub bport4 wr0:pub bport4 loc ipv4 ==================== shorewall/interfaces ==================== pub br0 detect bridge net br0:eth2 wr0 br0:eth1 loc eth0 detect tcpflags,dhcp The error message is consistent, whenever the compilation process encounters a rule similar to $NET:a.b.c.d in the rules file. Also, the mDNS macro now complaints on startup. What do I need to change for the desired macro expansion and What do I need to change to stop "martian source" complaints on bridge device for the servers in 'WR0 zone'. Thanks ------------------------------------------------------------------------------ Download new Adobe(R) Flash(R) Builder(TM) 4 The new Adobe(R) Flex(R) 4 and Flash(R) Builder(TM) 4 (formerly Flex(R) Builder(TM)) enable the development of rich applications that run across multiple browsers and platforms. Download your free trials today! http://p.sf.net/sfu/adobe-dev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
