Hi, On Fri, Aug 30, 2019 at 10:46:38AM -0700, Tom Eastep wrote: > > The rule must be placed in the conntrack file; not in the rules file.
Thanks again, and sorry if I misunderstood your previous answer. It works fine in the conntrack file. For the reference, the same line does not work with shorewall 4.6.4.3-2: Aug 30 18:21:47 ERROR: Invalid conntrack ACTION ( IPTABLES(CT --helper rtsp) ) /etc/shorewall/conntrack (line 53) I wonder if there’s a way to work around this in shorewall 4.6.4.3-2, but I understand that shorewall 4.6 is not supported any more. I also think it would be nicer if there were a way to declare the rtsp helper so I can set this up as CT:helper:rtsp - 212.27.38.253 tcp 554 but the “IPTABLES(CT --helper rtsp)” action still works fine as a workaround. Thanks again for your help, -- Nicolas _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
