On 3/2/13 5:13 PM, "Matt Joyce" <[email protected]> wrote:
>I had a quick question about the multiport match, I am wondering if it >is possible in shorewall to specify the equivalent of the following >iptables command. > >iptables -A accountin -m multiport --ports 123 -j ntp > >Or similar, has the effect of being a single rule that matches where >either the source or destination port is 123, I was hoping to use it for >accounting purposes as currently it takes two separate rules that then >have to be added together separately. If not is there an alternative to >using run_iptables in the start script that would achieve this I would >rather it be in the accounting file if possible because it is easier for >maintainability if things are not scattered through different files. There is currently no way to generate a '-m multiport --ports' match. -Tom PS -- your iptables command above is invalid :-) You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_feb _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
