From 0e1d84396d8040fd39367744a122bcfcda17b83b Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Sat, 31 Dec 2005 05:05:16 +0000
Subject: [PATCH] Restore loc->dmz rules in my configuration

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3206 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall-docs2/myfiles.xml | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/Shorewall-docs2/myfiles.xml b/Shorewall-docs2/myfiles.xml
index acaa64122..e20da8860 100644
--- a/Shorewall-docs2/myfiles.xml
+++ b/Shorewall-docs2/myfiles.xml
@@ -86,7 +86,7 @@
 
     <itemizedlist>
       <listitem>
-        <para> use SNAT through 206.124.146.179 for&nbsp;my Wife's Windows XP
+        <para>use SNAT through 206.124.146.179 for&nbsp;my Wife's Windows XP
         system <quote><emphasis>Tarry</emphasis></quote>, our SUSE 10.0 laptop
         <quote><emphasis>Tipper</emphasis></quote> which connects through the
         Wireless Access Point (wap) via a Wireless Bridge (wet), and my work
@@ -488,7 +488,13 @@ Ping/ACCEPT       vpn                             fw
 ACCEPT            vpn                             dmz                     udp     domain
 ACCEPT            vpn                             dmz                     tcp     www,smtp,smtps,domain,ssh,imap,https,imaps,ftp,10023,pop3       -
 Ping/ACCEPT       vpn                             dmz
-
+###############################################################################################################################################################################
+# Local network to DMZ 
+#
+ACCEPT            loc                             dmz                     udp     domain
+ACCEPT            loc                             dmz                     tcp     ssh,smtps,www,ftp,imaps,domain,https	-
+ACCEPT            loc                             dmz                     tcp     smtp
+ACCEPT            loc                             dmz                     udp     33434:33454
 ###############################################################################################################################################################################
 # Internet to ALL -- drop NewNotSyn packets
 #