[Shorewall-devel] Order sensitivity in shorewall configs

Tom Eastep teastep at shorewall.net
Wed May 21 08:15:13 PDT 2003


On Wed, 21 May 2003 21:59:12 +1000, Paul Gear <paul at gear.dyndns.org> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi folks (mostly Tom),
>
> In which shorewall configs is the ordering of entries significant?  I
> know about rules & policies, and if i remember correctly zones under
> some circumstances (when one is a sub-zone of another), but are there
> any others?
>
> I am trying to work out (for my multi-firewall preprocessing script)
> whether i need to process different files in different orders.
>

The following files are order-sensitive:

zones
policy
hosts
rules
tcrules
rfc1918
blacklist

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
Shoreline,     \ http://www.shorewall.net
Washington USA  \ teastep at shorewall.net



More information about the Shorewall-devel mailing list