[Shorewall-devel] Problems with dynamic zones

Tom Eastep teastep at shorewall.net
Fri May 27 09:17:30 PDT 2005


Tuomo Soini wrote:

> 
> I've just stared at that code too many hours today and could use a good
> advice. :-)
> 

The general problem of trying to place the more specific rules before
the less specific rules in the dynamic chains is very hard to solve,
given arbitrary changes in zone membership. You might try the attached
(untested) patch to see if it addresses your particular problem.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dynamiczone.diff
Type: text/x-patch
Size: 2635 bytes
Desc: not available
Url : http://lists.shorewall.net/pipermail/shorewall-devel/attachments/20050527/f7ea3163/dynamiczone.bin


More information about the Shorewall-devel mailing list