Hi All,
Quick question, Can I have a comma seperated list with in the masq
file like such
#INTERFACE SUBNET ADDRESS
eth0:!10.0.1.0/24,!10.0.2.0/24 10.0.0.0/24
I need to have a couple of IPSec zones and those are the subnets for
each zone.
Does this work.
Thanks in advance,
Jon
Jon Scottorn wrote:> Hi All, > > Quick question, Can I have a comma seperated list with in the masq > file like such > > #INTERFACE SUBNET ADDRESS > eth0:!10.0.1.0/24,!10.0.2.0/24 10.0.0.0/24 > > I need to have a couple of IPSec zones and those are the subnets for > each zone. > > Does this work.You must be running Shorewall 3.0.0 or later and you must use this syntax: #INTERFACE SUBNET ADDRESS eth0:!10.0.1.0/24,10.0.2.0/24 10.0.0.0/24 See http://www.shorewall.net/configuration_file_basics.htm#Exclusion -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Thu, 4 May 2006, Tom Eastep wrote:> Jon Scottorn wrote: > > Hi All, > > > > Quick question, Can I have a comma seperated list with in the masq > > file like such > > > > #INTERFACE SUBNET ADDRESS > > eth0:!10.0.1.0/24,!10.0.2.0/24 10.0.0.0/24 > > > > I need to have a couple of IPSec zones and those are the subnets for > > each zone. > > > > Does this work. > > You must be running Shorewall 3.0.0 or later and you must use this syntax: > > #INTERFACE SUBNET ADDRESS > eth0:!10.0.1.0/24,10.0.2.0/24 10.0.0.0/24 > > See http://www.shorewall.net/configuration_file_basics.htm#Exclusion > > -Tom >------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Sorry. It was a mistake. On Fri, 12 May 2006, Rado Ramarotafika wrote:> > > On Thu, 4 May 2006, Tom Eastep wrote: > > > Jon Scottorn wrote: > > > Hi All, > > > > > > Quick question, Can I have a comma seperated list with in the masq > > > file like such > > > > > > #INTERFACE SUBNET ADDRESS > > > eth0:!10.0.1.0/24,!10.0.2.0/24 10.0.0.0/24 > > > > > > I need to have a couple of IPSec zones and those are the subnets for > > > each zone. > > > > > > Does this work. > > > > You must be running Shorewall 3.0.0 or later and you must use this syntax: > > > > #INTERFACE SUBNET ADDRESS > > eth0:!10.0.1.0/24,10.0.2.0/24 10.0.0.0/24 > > > > See http://www.shorewall.net/configuration_file_basics.htm#Exclusion > > > > -Tom > > > > > ------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > >------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642