On 10/4/19 12:22 AM, Vieri Di Paola wrote:
> Hello again,
>
>> /etc/shorewall/mangle:
>>
>> IPTABLES(TEE --gateway 1.2.3.4):P eth0 -
>
> I'm also using this other rule now in mangle:
>
> IPTABLES(TEE --gateway $IPS_SOC_PROBE):T -
> ${IF_LAN}.13 !udp
>
> If I wanted to TEE traffic through the "out-interface" (-o) and not
> from $FW, which table and chain would be most appropriate for IDS
> analysis?
> mangle + POSTROUTING
> mangle + FORWARD
> ...
> FORWARD -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
