extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-01-23 05:58:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add caution regarding Address Varibles

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep 2016-10-22 14:39:40 -07:00
parent 5b26f1939b
commit 9c749731c5
No known key found for this signature in database
GPG Key ID: 96E6B3F2423A4D10
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
docs/configuration_file_basics.xml
View File

@ -1654,6 +1654,14 @@ SSH(ACCEPT) net:$MYIP $FW
<section id="AddressVariables">
<title>Address Variables</title>
<caution>
<para>If you use address variables that refer to an optional interface,
the <command>enable</command> command will not change the rules that use
the variable. Therefore, to be completely safe, if you use such address
variables then you must follow an <command>enable</command> command with
a <command>reload</command> command.</para>
</caution>
<para>Given that shell variables are expanded at compile time, there is no
way to cause such variables to be expanded at run time. Prior to Shorewall
4.4.17, this made it difficult (to impossible) to include dynamic IP