[Shorewall-newbies] Re: Shorewall-newbies Digest, Vol 2, Issue 18
Lyvim Xaphir
lxaphir at yahoo.com
Fri Jan 23 04:36:44 PST 2004
On Wed, 2004-01-21 at 15:58, Tom Eastep wrote:
> On Wednesday 21 January 2004 12:54 pm, Garrett Johnson wrote:
> > Garrett Johnson
> > MIS Manager
> > Annalee Mobilitee Dolls, Inc.
> >
> > Is it possible to turn on and off port forwarding without restarting
> > shorewall.
>
> No.
>
> -Tom
True, BUT....if you have an existing connection in place between the
internal lan and the internet cloud, if you do NOT use "service
shorewall restart" and instead use
shorewall restart
your established internet connections are preserved instead of cut,
*and* the new rules are applied. In other words, if you have an ssh,
ftp, or other connection going out that you want to maintain, you can do
so with confidence using "shorewall restart" and it won't get cut;
however the new rules in the shorewall tables *will* be applied. If on
the other hand you do "service shorewall restart", that will cut all
established connections.
HTH
LX
More information about the Shorewall-newbies
mailing list