Menu
▾
▴
Re: [Shorewall-devel] Re: [Shorewall-users] Restart and lost connections
|
From: Tom E. <te...@sh...> - 2003-08-19 21:43:19
|
On Tue, 2003-08-19 at 13:55, Tom Eastep wrote: > > And I have absolutely no idea how to do the chain-specific extension > scripts that Shorewall supports today; I suspect that it is not > possible. > I've thought about these some more and believe that they can be done but there will be restrictions on what the user can do in the scripts (because they would run when the save file was created and not when the actual [re]start was done. Another problem with the iptables-sim idea is that it would probably not fly with the Bering crowd since it would be another (presumably large) package that would have to be loaded to run Shorewall. And no -- I wouldn't consider allowing Shorewall to run in either "iptables-sim" mode or its current mode. It's hard enough to get it right with only one mode to worry about. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ te...@sh... |
