mirror of
https://gitlab.com/shorewall/code.git
synced 2024-12-22 14:20:40 +01:00
Tweak for Multi-ISP doc
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5401 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
parent
122711da53
commit
e43c2287d4
@ -654,7 +654,7 @@ Feb 9 17:23:45 gw.ilinx kernel: ll header: 00:a0:24:2a:1f:72:00:13:5f:07:97:05:
|
|||||||
If you do this, you may wish to add rules to log and drop packets from
|
If you do this, you may wish to add rules to log and drop packets from
|
||||||
the Internet that have source addresses in your local networks. For
|
the Internet that have source addresses in your local networks. For
|
||||||
example, if the local LAN in the above diagram is 192.168.1.0/24, then
|
example, if the local LAN in the above diagram is 192.168.1.0/24, then
|
||||||
you would add this rule: </para>
|
you would add this rule:</para>
|
||||||
|
|
||||||
<programlisting>#ACTION SOURCE DEST
|
<programlisting>#ACTION SOURCE DEST
|
||||||
DROP:info net:192.168.1.0/24 all</programlisting>
|
DROP:info net:192.168.1.0/24 all</programlisting>
|
||||||
@ -691,7 +691,8 @@ net net DROP</programlisting>
|
|||||||
following entries are required in
|
following entries are required in
|
||||||
<filename>/etc/shorewall/masq</filename> if you plan to redirect
|
<filename>/etc/shorewall/masq</filename> if you plan to redirect
|
||||||
connections from the firewall using entries in
|
connections from the firewall using entries in
|
||||||
<filename>/etc/shorewall/tcrules</filename>.</para>
|
<filename>/etc/shorewall/tcrules</filename> or if you specify <emphasis
|
||||||
|
role="bold">balance</emphasis> on your providers.</para>
|
||||||
|
|
||||||
<programlisting>#INTERFACE SUBNET ADDRESS
|
<programlisting>#INTERFACE SUBNET ADDRESS
|
||||||
eth0 130.252.99.27 206.124.146.176
|
eth0 130.252.99.27 206.124.146.176
|
||||||
|
Loading…
Reference in New Issue
Block a user