Hу здpаcте shorewall-users, i''m not subscribed to the mailing list so... how can i say to shorewall to do something like this iptables -A POSTROUTING -o eth1 --dst ! 10.0.0.0/8 -j SNAT my_ip well the main part is - "--dst ! 10.0.0.0/8". Do i need to create my own rules at startup (how? or do i need to worry not to break some shorewall rules) or shorewall can be configured to do this? (this freaked net scheme was thrusted on me by my isp so don''t worry about it :-)) PS: sorry for bad english - i''m from russia. -----------••••··· [ www.magicssoft.ru | www.kaskadterra.ru | www.sakura.magicssoft.ru ] С уважением, GiniuS. mailto:GodsForge@inbox.ru np: b-z-z-z-z
On Thursday 02 September 2004 01:25, Michael Varamashvili wrote:> Hу здpаcте shorewall-users, > > i''m not subscribed to the mailing list so... > > how can i say to shorewall to do something like this > > iptables -A POSTROUTING -o eth1 --dst ! 10.0.0.0/8 -j SNAT my_ip >In /etc/shorewall/masq: eth1:!10.0.0.0/8 <local net> <my_ip> -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key