Hi, I seem to have a problem with tcfilters in shorewall6. I try to put traffic which belongs to my own subnet in bucket 1:10 or 2:10 but it seems to fail. What I''m trying to do in tcfilters is the following: 2:10 2001:67c:1e8::/48 2001:67c:1e8::/48 tcp - - 1:10 2001:67c:1e8::/48 2001:67c:1e8::/48 tcp - - I''m using shorewall 4.4.16.1. Regards, Sander ------------------------------------------------------------------------------ Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)! Finally, a world-class log management solution at an even better price-free! Download using promo code Free_Logger_4_Dev2Dev. Offer expires February 28th, so secure your free ArcSight Logger TODAY! http://p.sf.net/sfu/arcsight-sfd2d
On 2/3/11 1:19 AM, Sander Klein wrote:> Hi, > > I seem to have a problem with tcfilters in shorewall6. I try to put > traffic which belongs to my own subnet in bucket 1:10 or 2:10 but it > seems to fail. > > What I''m trying to do in tcfilters is the following: > > 2:10 2001:67c:1e8::/48 2001:67c:1e8::/48 tcp - - > 1:10 2001:67c:1e8::/48 2001:67c:1e8::/48 tcp - - > > I''m using shorewall 4.4.16.1.Hi Sander, Please try the attached patch: patch /usr/share/shorewall/Shorewall/IPAddrs.pm < IPADDRS.patch Thanks! -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)! Finally, a world-class log management solution at an even better price-free! Download using promo code Free_Logger_4_Dev2Dev. Offer expires February 28th, so secure your free ArcSight Logger TODAY! http://p.sf.net/sfu/arcsight-sfd2d
> > Please try the attached patch: > > patch /usr/share/shorewall/Shorewall/IPAddrs.pm < IPADDRS.patch > > Thanks!Thanks for the patch. I haven''t had time to test it yet. I''ll do so next monday. Thanks again. Sander ------------------------------------------------------------------------------ The modern datacenter depends on network connectivity to access resources and provide services. The best practices for maximizing a physical server''s connectivity to a physical network are well understood - see how these rules translate into the virtual world? http://p.sf.net/sfu/oracle-sfdevnlfb