Re: [Shorewall-users] Shorewall-perl 4.0.1 - Problem with zones

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

J=E9r=F4me Blion wrote:
>
>=20
> Ok, I read the documentation. Replacing fw by $FW and wan by all works =
fine.
> I understood that it will be not possible anymore to set up differents
> rulesets in tos file by zone. Am I right?

If eth0 is your wan interface, you can do the following:

#SOURCE         DEST            PROTOCOL        SOURCE  DEST    TOS
#                                               PORTS   PORTS
$FW              eth0            tcp             22      -       16
$FW              eth0            tcp             3306    -       16
$FW              eth0            tcp             80      -       2
#LAST LINE -- Add your entries above -- DO NOT REMOVE

-Tom
--=20
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ te...@sh...
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key