Joerg Hartmann wrote:> ... > as a reader of the shorewall-users mailinglist sometimes i see > interface names like ppp+ or ipsec+ . Even in the Shorewall Doc there > is such an thingie. However, i did not found any explanations for > that + sign. What does this + mean ?Anything. It is like * in filenames or .* in regexps. Paul http://paulgear.webhop.net
Hello shorewall-users, as a reader of the shorewall-users mailinglist sometimes i see interface names like ppp+ or ipsec+ . Even in the Shorewall Doc there is such an thingie. However, i did not found any explanations for that + sign. What does this + mean ? And second, in the Doc at the shorewall Homepage is stated Warning: Do not use Proxy ARP and FreeS/Wan on the same system unless you are prepared to suffer the consequences. It is there since 1.2.6 (my first shorewall version). Is this still true with 1.2.10 ? -- Best regards, Joerg J.Hartmann@des.mediadesign.de
----- Original Message ----- From: "Joerg Hartmann" <J.Hartmann@des.mediadesign.de> To: <shorewall-users@shorewall.net> Sent: Sunday, March 24, 2002 4:16 AM Subject: [Shorewall-users] interface names and FreeS/WAN> > And second, in the Doc at the shorewall Homepage is stated > > Warning: Do not use Proxy ARP and FreeS/Wan on the same system > unless you are prepared to suffer the consequences. > > It is there since 1.2.6 (my first shorewall version). > Is this still true with 1.2.10 ?It''s not a Shorewall bug but rather a bug in the ''arp'' utility or in the kernel. I don''t know if it is still there since I no longer run FreeS/Wan. In either event, the workaround mentioned in the documentation should avoid the problem; the main thing is to not [re]start Shorewall with an active FreeS/Wan connection. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
Joerg, I believe this is true, and if it''s not then some one will correct me. The `syntax'' of declarations, such as ppp+ are consistent with iptables and the earlier ipchains. Shorewall saves tons of work writing your own set of tables, but you should know the general rules of iptables to use shorewall most effectively. -- Sincerely, David Smead http://www.amplepower.com. On Sun, 24 Mar 2002, Joerg Hartmann wrote:> Hello shorewall-users, > > as a reader of the shorewall-users mailinglist sometimes i see > interface names like ppp+ or ipsec+ . Even in the Shorewall Doc there > is such an thingie. However, i did not found any explanations for > that + sign. What does this + mean ? > > And second, in the Doc at the shorewall Homepage is stated > > Warning: Do not use Proxy ARP and FreeS/Wan on the same system > unless you are prepared to suffer the consequences. > > It is there since 1.2.6 (my first shorewall version). > Is this still true with 1.2.10 ? > >