shorewall-users January 2012 archive
Main Archive Page > Month Archives  > shorewall-users archives
shorewall-users: Re: [Shorewall-users] How do Shorewall , Line I

Re: [Shorewall-users] How do Shorewall , Line Iptables.

From: Tom Eastep <teastep_at_nospam>
Date: Thu Jan 19 2012 - 17:52:01 GMT
To: shorewall-users@lists.sourceforge.net

On 01/19/2012 08:03 AM, I.S.C. William wrote:
> Please help my in this line Iptables interpret in Shorewall ..
>
> How do Shorewall ? this 2 line Iptables in shorewall ..
>
> *LAN=eth0*
>
> */sbin/iptables -t nat -A POSTROUTING -o $LAN -d 192.160.0.0/16
> -j LOG --log-prefix " *
> *--out --"*

This exact rule cannot be created in Shorewall. You need this in
/etc/shorewall/rules:

LOG all lan:192.160.0.0/16

where 'lan' is the zone associated with eth0.
        
> *
> *
> */sbin/iptables -t nat -A POSTROUTING -s 10.8.0.0/24
> -o $LAN -d192.160.0.0/16 -j *
> *MASQUERADE*

In /etc/shorewall/masq:

eth0:192.160.0.0/16 10.8.0.0/24

-Tom
-- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________

------------------------------------------------------------------------------
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-d2d

_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users