Edit /etc/shorewall/masq and you'll need a line similar to: br0 172.17.0.0/12 In this case, my WAN interface is actually br0 (a bridge), but yours will probably be something like eth0. (Use ifconfig to see your interfaces and their IP addresses). On my machine docker uses 172.17.0.0/24 which is an RFC1918 private address range.

Docker & Shorewall - Server Fault Edit /etc/shorewall/masq and you'll need a line similar to: br0 172.17.0.0/12 In this case, my WAN interface is actually br0 (a bridge), but yours will probably be something like eth0. (Use ifconfig to see your interfaces and their IP addresses). On my machine docker uses 172.17.0.0/24 which is an RFC1918 private address range. Chapter 9. Configure Shorewall - LEAF Project Shorewall is an iptables based firewall which offers many features (Masquerading/SNAT, Port forwarding, Static NAT, Proxy ARP, VPN support, Traffic Control/Shaping) which are described in greater detail here.. It is a very powerful tool with which it is "simple to do simple things" but which also offers a … shorewall-notrack(5): shorewall notrack file - Linux man page where zone is the name of a zone, interface is an interface to that zone, and address-list is a comma-separated list of addresses (may contain exclusion - see shorewall-exclusion [1] (5)). Comments may be attached to Netfilter rules generated from entries in this file through the use of COMMENT lines.

where zone is the name of a zone, interface is an interface to that zone, and address-list is a comma-separated list of addresses (may contain exclusion - see shorewall-exclusion [1] (5)). Comments may be attached to Netfilter rules generated from entries in this file through the use of COMMENT lines.

Mar 13, 2009 networking - Shorewall IP Forwarding Problems in 12.04 LTS Internet connectivity through my 12.04 LTS shorewall box is spotty at best. Ping works both locally and to the internet with no dropped packets (from both the box itself and internal LAN). HTTP connections work great through squid, but when I don't use squid they are slow and spotty. iptables - shorewall masquerading from tun0 to ppp0

HowTo/shorewall - Debian Wiki

shorewall-masq