-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
TGS wrote:> Is there such a rule are fw to fw ? For instance, how do I specify
localhost> to localhost, or a eth1 to eth1 interface?
Since Shorewall 2.0.0, fw->fw rules are allowed. As with any intra-zone
traffic, if you have one or more fw->fw rules then you will want to
specify what your fw->fw policy is in /etc/shorewall/policy.
There is no requirement to include ''lo'' in
/etc/shorewall/interfaces.
- -Tom
- --
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBWKuQO/MAbZfjDLIRAndLAJ9k9pWyflyPluLIhkyhK69n4hHqYQCfWc7d
MuzGly7Ndf21o3AK38u5so8=jw8v
-----END PGP SIGNATURE-----