On 05/15/2013 03:37 PM, Troy Telford wrote: > On 2013-04-26 23:18:11 +0000, Tom Eastep said: >> That's fascinating, given that I gave you a bad rule. What I wanted you >> to do was: >> >> TPROXY(3129) eth0 !<address of eth0> tcp 80 >> >> Same with br0: >> >> TPROXY(3129) br0 !<address of br0> tcp 80 >> >> -Tom > > I realize this is a couple of weeks old, but... > > I noticed that the current documentation > (http://www.shorewall.net/Shorewall_Squid_Usage.html#TPROXY) > has the following syntax in a note: > > TPROXY(3129) eth1:!192.0.2.144 0.0.0.0/0 tcp 80 > > On the mailing list, you've told me to use: >> TPROXY(3129) eth0 !<address of eth0 tcp 80 > > Does the documentation at www.shorewall.net need to be updated? > > Which one is the correct syntax? > > (For the record, the one Tom gave above is the one that works for me; > the one documented at www.shorewall.net does not work if I connect via > IPv4 to the web server on $FW.) >
The doc at www.shorewall.net was wrong and has been corrected. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ AlienVault Unified Security Management (USM) platform delivers complete security visibility with the essential security capabilities. Easily and efficiently configure, manage, and operate all of your security controls from a single console and one unified framework. Download a free trial. http://p.sf.net/sfu/alienvault_d2d
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
