API tools faq
paste
Advertisement
peetaur

shorewall zone nesting not working

peetaur
Feb 19th, 2014
148
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.04 KB | None | 0 0
raw download clone embed print report
  1. peter:/etc/shorewall # cat zones interfaces hosts
  2. #
  3. # Shorewall version 4 - Zones File
  4. #
  5. # For information about this file, type "man shorewall-zones"
  6. #
  7. # The manpage is also online at
  8. # http://www.shorewall.net/manpages/shorewall-zones.html
  9. #
  10. ###############################################################################
  11. #ZONE TYPE OPTIONS IN OUT
  12. # OPTIONS OPTIONS
  13. fw firewall
  14. wan ipv4
  15. lan:wan ipv4
  16. vm ipv4
  17. #
  18. # Shorewall version 4 - Interfaces File
  19. #
  20. # For information about entries in this file, type "man shorewall-interfaces"
  21. #
  22. # The manpage is also online at
  23. # http://www.shorewall.net/manpages/shorewall-interfaces.html
  24. #
  25. ###############################################################################
  26. FORMAT 2
  27. ###############################################################################
  28. #ZONE INTERFACE OPTIONS
  29. - eth0
  30. lan br0 bridge,routeback
  31. vm br1 bridge,routeback
  32. vm tap+
  33. #
  34. # Shorewall version 4 - Hosts file
  35. #
  36. # For information about entries in this file, type "man shorewall-hosts"
  37. #
  38. # The manpage is also online at
  39. # http://www.shorewall.net/manpages/shorewall-hosts.html
  40. #
  41. ###############################################################################
  42. #ZONE HOST(S) OPTIONS
  43. #wan eth0:0.0.0.0/0
  44. wan br0:0.0.0.0/0
  45. lan br0:192.168.179.0/24
  46. #lan eth0:192.168.179.0/24
  47.  
  48.  
  49.  
  50. peter:/etc/shorewall # iptables --list -v --line-numbers
  51.  
  52. Chain br0_fwd (1 references)
  53. num pkts bytes target prot opt in out source destination
  54. 1 108 13734 dynamic all -- any any anywhere anywhere ctstate INVALID,NEW
  55. 2 163 18950 lan_frwd all -- any any anywhere anywhere
  56. 3 0 0 lan_frwd all -- any any 192.168.179.0/24 anywhere
  57. 4 0 0 wan_frwd all -- any any anywhere anywhere
  58.  
  59. Chain br0_in (1 references)
  60. num pkts bytes target prot opt in out source destination
  61. 1 28 3210 dynamic all -- any any anywhere anywhere ctstate INVALID,NEW
  62. 2 15662 4189K lan2fw all -- any any anywhere anywhere
  63. 3 0 0 lan2fw all -- any any 192.168.179.0/24 anywhere
  64. 4 0 0 wan2fw all -- any any anywhere anywhere
  65.  
  66. Chain br0_out (1 references)
  67. num pkts bytes target prot opt in out source destination
  68. 1 3138 324K fw2lan all -- any any anywhere anywhere
  69. 2 0 0 fw2lan all -- any any anywhere 192.168.179.0/24
  70. 3 0 0 fw2wan all -- any any anywhere anywhere
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!