Re: [Shorewall-users] shorewall start and custom commands

Vieri Di Paola Fri, 04 Oct 2019 00:24:24 -0700

Hello again,

> /etc/shorewall/mangle:
>
> IPTABLES(TEE --gateway 1.2.3.4):P       eth0    -


I'm also using this other rule now in mangle:

IPTABLES(TEE --gateway $IPS_SOC_PROBE):T        -
${IF_LAN}.13   !udp

If I wanted to TEE traffic through the "out-interface" (-o) and not
from $FW, which table and chain would be most appropriate for IDS
analysis?
mangle + POSTROUTING
mangle + FORWARD
...

Thanks again,

Vieri


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Re: [Shorewall-users] shorewall start and custom commands

Reply via email to