Hello, I''ve been trying to find some documentation that explains how I can have Shorewall send certain traffic through an iptables chain that I will maintain myself. Here''s what I am trying to accomplish: Once Shorewall has decided if traffic will be allowed or not, it will send it through a chain that is maintained externally. This chain will either return immediately if the specific host has been white listed. Alternatively it will redirect web requests to an authentication server which may or may not add it to this chain. I don''t believe Shorewall has the ability to manage something like this and thus I am looking for a way to have it send traffic through a chain maintained by another script. Is this possible? Could you point me in the right direction to any documentation or config examples that might help? Thanks, Trevor Peirce ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Trevor Peirce wrote:> Hello, > > I''ve been trying to find some documentation that explains how I can have > Shorewall send certain traffic through an iptables chain that I will > maintain myself. Here''s what I am trying to accomplish: > > Once Shorewall has decided if traffic will be allowed or not, it will > send it through a chain that is maintained externally. This chain will > either return immediately if the specific host has been white listed. > Alternatively it will redirect web requests to an authentication server > which may or may not add it to this chain. > > I don''t believe Shorewall has the ability to manage something like this > and thus I am looking for a way to have it send traffic through a chain > maintained by another script. > > Is this possible? Could you point me in the right direction to any > documentation or config examples that might help?See http://www1.shorewall.net/ManualChains.html -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Tom Eastep wrote:> Trevor Peirce wrote: >> Hello, >> >> I''ve been trying to find some documentation that explains how I can >> have Shorewall send certain traffic through an iptables chain that I >> will maintain myself. Here''s what I am trying to accomplish: > > See http://www1.shorewall.net/ManualChains.html >Thanks. Just updated to Shorewall 4 and will give this a try. I was definitely using the wrong search term "custom chains" whereas it looks like Manual Chains would have brought me right there. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/