As already stated by others I'm also deeply grateful for what Shorewall has done for me. It sure makes iptables look easy... but I think it's great that it also takes care of tc, route tables, route rules, etc. So it's much more than a "firewall".
Incidentally, I'm seeing these errors more often lately: Running /sbin/arptables-restore... *** Flush not complete bailing out after 10 rounds ERROR: Command "ip -4 neigh flush nud stale nud reachable" Failed I wonder if I need to increase the number of rounds because I have quite a complex system. Actually I have 2 complex shorewall boxes, and I'm procrastinating the migration to another system because I know I won't have a tool as complete as Shorewall. Anyway, thanks again to the whole team. Enjoy life, Tom. Thanks, Vieri _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
