On Wed, 18 Feb 2004 18:25:34 +0000, Antony Stone <Antony@xxxxxxxxxxxxxxxxxxxx> wrote in message <200402181825.35022.Antony@xxxxxxxxxxxxxxxxxxxx>: > On Wednesday 18 February 2004 6:26 pm, capsx wrote: > > > ! > > > > I want as source to specify a chain > > not -s 10.0.0.0/27 but something like -s LOCAL_NET_CHAIN > > You can't do that. -s takes an address or network range. -i takes > an interface name. You cannot specify anything else as the 'source' > of a packet. > > Tell us why you want to do this and we might be able to suggest an > alternative ..I suspect he means he wants " -s $LOCAL_NET " or somesuch, such variables needs first be defined like ' LOCAL_NET="10.0.0.0/27" ', for larger sites, it's possible to script these definitions, check the http://tldp.org/LDP/abs/html/ over at http://tldp.org/guides.html for ideas. > (MARKing packets comes to mind, for example). -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case.
