|
Tom Eastep thanks a lot
sorry to bother you but... i have an error and ERROR: SOURCE/DEST PORT(S) not allowed without PROTO /etc/shorewall/rules if I change "- -" with "tcp all" or "udp all" or "icmp all" the result is the same /etc/shorewall/rules: DNAT net:5.6.7.8 vip:10.0.0.193 - - 1.2.3.5 DROP net fw:1.2.3.5 DNAT vip:10.0.0.193 net:5.6.7.8 - - 10.0.0.194 /etc/shorewall/masq: eth2:10.0.0.193 5.6.7.8 10.0.0.194 eth0:5.6.7.8 10.0.0.193 1.2.3.5 My setup Shorewall 5.0.4 / Ubuntu 16.04.1 x64) shorewall show -f capabilities # # Shorewall 5.0.4 detected the following iptables/netfilter capabilities # ACCOUNT_TARGET= CAPVERSION=50004 CONDITION_MATCH= FTP0_HELPER= GEOIP_MATCH= HEADER_MATCH= IFACE_MATCH= IMQ_TARGET= IPMARK_TARGET= IPP2P_MATCH= IPSET_MATCH= IPSET_MATCH_COUNTERS= IPSET_MATCH_NOMATCH= IPSET_V5= IRC0_HELPER= KERNELVERSION=40400 LOGMARK_TARGET= NFACCT_MATCH= OLD_CONNTRACK_MATCH= OLD_HL_MATCH= OLD_IPP2P_MATCH= OLD_IPSET_MATCH= RAWPOST_TABLE= SANE0_HELPER= SIP0_HELPER= TARPIT_TARGET= TFTP0_HELPER= UDPLITEREDIRECT= ULOG_TARGET= all other values are =Yes greetings |
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
