On 01/19/2012 08:03 AM, I.S.C. William wrote: > Please help my in this line Iptables interpret in Shorewall .. > > How do Shorewall ? this 2 line Iptables in shorewall .. > > *LAN=eth0* > > */sbin/iptables -t nat -A POSTROUTING -o $LAN -d 192.160.0.0/16 > -j LOG --log-prefix " * > *--out --"*
This exact rule cannot be created in Shorewall. You need this in
/etc/shorewall/rules:
LOG all lan:192.160.0.0/16
where 'lan' is the zone associated with eth0.
> *
> *
> */sbin/iptables -t nat -A POSTROUTING -s 10.8.0.0/24
> -o $LAN -d192.160.0.0/16 -j *
> *MASQUERADE*
In /etc/shorewall/masq:
eth0:192.160.0.0/16 10.8.0.0/24
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
