On 04/17/2012 11:29 PM, Shalom Cohen wrote:> Hi,
>
> This is just an offer to improve the existing config file for tunnels in
> Shorewall.
> Restricting a site to site tunnel remote IP''s may require that you
will
> put multiple entries for the same tunnel (when using multiple
ISP''s and
> few gateways for redundancy).
> The restriction is that in a tunnel remote IP/Network entry you
can''t
> use group of entries as you would use in rules or route rules(comma
> seperated), if this can be enhanced to support it it will be great (for
> now using regular rules until such option will be available).
Will be in 4.5.3 Beta 1; exclusion will not be supported.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
shorewall.net \________________________________________________
------------------------------------------------------------------------------
Better than sec? Nothing is better than sec when it comes to
monitoring Big Data applications. Try Boundary one-second
resolution app monitoring today. Free.
p.sf.net/sfu/Boundary-dev2dev