|
Really thanks gentlemen You re right, i try to open a wan port i have investigate mac filtering and i succeed to get that in my shorewall dump : 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 MAC 00:XX:XX:XX:XX:XX tcp dpt:22 unfortunetly it doesn t work ... snif Anyway, i'll have a look on ipsets that seems to fit my need Do you know which shorewall service call will update the IP if this one have change, reload or restart ? Am i the first to ask for dyndns ? on my mind, it should be implemented in core ... Norbert Le 26/10/2010 17:21, Tom Eastep a écrit : On 10/26/10 8:11 AM, Harry Lachanas wrote:Only because my client doesn't have a static IP address and i don t wantto open ports for everybody ... Am i wrong to try that ?Yes. Why don't you match on MAC address instead?-TomI suppose that you want to open ports from the net side of your fw.I was assuming that the ports were to be opened from the LAN side of the fw. For the net side, Harry's approach is the correct one unless all of the 'clients' are on the same LAN as the 'net' fw interface. -Tom------------------------------------------------------------------------------ Nokia and AT&T present the 2010 Calling All Innovators-North America contest Create new apps & games for the Nokia N8 for consumers in U.S. and Canada $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store http://p.sf.net/sfu/nokia-dev2dev_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users |
------------------------------------------------------------------------------ Nokia and AT&T present the 2010 Calling All Innovators-North America contest Create new apps & games for the Nokia N8 for consumers in U.S. and Canada $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
