Shorewall users - Feb 2010 - LOG:warning

Can one specify a LOG:warning ''rule'' also between systems in
the same zone,
e.g.
LOG:warning     loc           loc:123.112.66.100    tcp     80


------------------------------------------------------------------------------
SOLARIS 10 is the OS for Data Centers - provides features such as DTrace,
Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW
http://p.sf.net/sfu/solaris-dev2dev

N dhert wrote:
> Can one specify a LOG:warning ''rule'' also between systems
in the same
> zone, e.g.
> LOG:warning     loc           loc:123.112.66.100    tcp     80
>
Sure -- provided that you have configured things such that at least some
loc->loc traffic is routed through the firewall (or passes through a
bridge on the firewall). If traffic is routed out of the same interface
that it arrived on (such as would be the case with a bridge), you must
define the interface with the ''routeback'' option in
/etc/shorewall/interfaces.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
SOLARIS 10 is the OS for Data Centers - provides features such as DTrace,
Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW
http://p.sf.net/sfu/solaris-dev2dev