forked from extern/shorewall_code
Make the Multi-ISP tcrules fool-proof
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@4524 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
parent
ae9e32ee9a
commit
a5c17ecea8
19
docs/FAQ.xml
19
docs/FAQ.xml
@ -712,9 +712,17 @@ to debug/develop the newnat interface.</programlisting></para>
|
||||
<title>(FAQ 4c) How do I use Shorewall with PortSentry?</title>
|
||||
|
||||
<para><ulink
|
||||
url="http://www.shorewall.net/pub/shorewall/contrib/PortsentryHOWTO.txt">Here's
|
||||
a writeup</ulink> describing a nice integration of Shorewall and
|
||||
PortSentry.</para>
|
||||
url="http://www.shorewall.net/pub/shorewall/contrib/PortsentryHOWTO.txt"><emphasis
|
||||
role="bold">Answer:</emphasis> Here's a writeup</ulink> describing a
|
||||
nice integration of Shorewall and PortSentry.</para>
|
||||
</section>
|
||||
|
||||
<section>
|
||||
<title>(FAQ 4d) How do I use Shorewall with Snort-Inline?</title>
|
||||
|
||||
<para><emphasis role="bold">Answer:</emphasis> <ulink
|
||||
url="http://www.catherders.com/tiki-view_blog_post.php?blogId=1&postId=71">Here
|
||||
is a writeup</ulink> contributed by Michael Cooke.</para>
|
||||
</section>
|
||||
</section>
|
||||
</section>
|
||||
@ -1647,13 +1655,12 @@ iptables: Invalid argument
|
||||
the traffic between the interfaces? I don't want that!</title>
|
||||
|
||||
<para><emphasis role="bold">Answer</emphasis>: Suppose that you want all
|
||||
traffic to go out through ISP1 (mark 1) unless you specify otherwise;
|
||||
your internal interface is <filename class="devicefile">eth0</filename>.
|
||||
traffic to go out through ISP1 (mark 1) unless you specify otherwise.
|
||||
Then simply add these two rules as the first marking rules in your
|
||||
<filename>/etc/shorewall/tcrules</filename> file:</para>
|
||||
|
||||
<programlisting>#MARK SOURCE DEST
|
||||
1:P eth0
|
||||
1:P 0.0.0.0/0
|
||||
1:P $FW
|
||||
<other MARK rules></programlisting>
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user