From a61e208be18b94764fe4b6705114674304e71832 Mon Sep 17 00:00:00 2001 From: teastep Date: Thu, 30 Sep 2004 15:30:35 +0000 Subject: [PATCH] Documentation updates git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1655 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- Shorewall-docs2/OPENVPN.xml | 6 +++--- Shorewall-docs2/traffic_shaping.xml | 11 ++++++++++- 2 files changed, 13 insertions(+), 4 deletions(-) diff --git a/Shorewall-docs2/OPENVPN.xml b/Shorewall-docs2/OPENVPN.xml index 589afc31e..826e210c8 100644 --- a/Shorewall-docs2/OPENVPN.xml +++ b/Shorewall-docs2/OPENVPN.xml @@ -21,7 +21,7 @@ - 2004-09-14 + 2004-09-29 2003 @@ -118,10 +118,10 @@ generic:udp:5000 net 134.28.54.2 OpenVPN to 7777, you can define /etc/shorewall/tunnels like this:
- /etc/shorewall/tunnels with port 7777: + /etc/shorewall/tunnels with port 7777: #TYPE ZONE GATEWAY GATEWAY ZONE -openvpn:77777 net 134.28.54.2 +openvpn:7777 net 134.28.54.2
This is the OpenVPN config on system A: diff --git a/Shorewall-docs2/traffic_shaping.xml b/Shorewall-docs2/traffic_shaping.xml index 8a855b997..320a4e6c8 100644 --- a/Shorewall-docs2/traffic_shaping.xml +++ b/Shorewall-docs2/traffic_shaping.xml @@ -15,7 +15,7 @@ - 2004-08-05 + 2004-09-30 2001-2004 @@ -182,6 +182,15 @@ to occur in the FORWARD chain by using the MARK_IN_FORWARD_CHAIN option in shorewall.conf. + + Unlike entries in /etc/shorewall/rules, + evaluation of entries in /etc/shorewall/tcrules + continues after a match. So the final mark assigned to each packet is + determined by the last matching entry + in the /etc/shorewall/tcrules file. + + Columns in the file are as follows: