Instead of having multiple rules like this
DNAT net loc:192.168.1.32 tcp 22 - 12.34.111.32 DNAT net loc:192.168.1.33 tcp 22 - 12.34.111.33 DNAT net loc:192.168.1.34 tcp 22 - 12.34.111.34 DNAT net loc:192.168.1.35 tcp 22 - 12.34.111.35 DNAT net loc:192.168.1.36 tcp 22 - 12.34.111.36 I wonder is it possible to use Perl / sed style backreferences, so you'd have a rule like DNAT net loc:192.168.1.(.+) tcp 22 - 12.34.111.$1 Apologies if this is in the manual, but I have looked and didn't find. Maybe this is somehow doable with ipsets, but it's not clear to me how it would be. Kindest regards, Niall O Broin ------------------------------------------------------------------------------ This SF.net email is sponsored by Windows: Build for Windows Store. http://p.sf.net/sfu/windows-dev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
