thr3ads.net - Shorewall users - shorewall-rules man page [May 2007]

If this information is useful, please help other people find it:
Share via:

Vieri Di Paola

2007-May-30 07:40 UTC

shorewall-rules man page

I believe example 7 should have a DNAT action.

# man shorewall-rules

       Example 7:
              You  wish  to accept connections from
the internet to your fire-
              wall on port 2222 and you want to
forward them to  local  system
              192.168.1.3, port 22

                      #ACTION  SOURCE DEST            
   PROTO   DEST    SOURCE
  ORIGINAL
                      #                               
           PORT    PORT(S
) DEST
                      ACCEPT   net   
loc:192.168.1.3:22  tcp     2222

# /etc/init.d/shorewall check
Checking /etc/shorewall/rules...
   ERROR: Only DNAT, SAME and REDIRECT rules may
specify destination port mapping; rule "ACCEPT net
loc:10.215.144.27:80 tcp 8008    "
/etc/init.d/shorewall: line 67: 25494 Terminated      
       /sbin/shorewall check                          
                                            [ !! ]

# shorewall version
3.4.3



       
____________________________________________________________________________________Got
a little couch potato?
Check out fun summer activities for kids.
http://search.yahoo.com/search?fr=oni_on_mail&p=summer+activities+for+kids&cs=bz

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/

Tom Eastep

2007-May-30 10:22 UTC

head link

Re: shorewall-rules man page

Vieri Di Paola wrote:> I believe example 7 should have a DNAT action.
Corrected in r6452 (both 3.4 and 4.0).

Thanks,
-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key



-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/

Shorewall users - May 2007 - shorewall-rules man page

shorewall-rules man page

Re: shorewall-rules man page