shorewall-users April 2012 archive
Main Archive Page > Month Archives  > shorewall-users archives
shorewall-users: Re: [Shorewall-users] Multiple internal interfa

Re: [Shorewall-users] Multiple internal interfaces

From: Tom Eastep <teastep_at_nospam>
Date: Thu Apr 12 2012 - 18:11:08 GMT
To: shorewall-users@lists.sourceforge.net

On 4/12/12 10:57 AM, Orion Poplawski wrote:
here?
>
> I first thought it was the masq setting and so did:
>
> p2p2:!10.0.0.0/8 10.0.0.0/8 4.28.99.98
>
> but it still routes it out p2p2:

Entries in /etc/shorewall/masq *never* change the routing of a packet.

>
> 11:22:02.561155 IP 10.10.20.2.53011 > 10.11.0.2.http: Flags [S], seq
> 2539220996, win 14600, options [mss 1460,sackOK,TS val 268431706 ecr
> 0,nop,wscale 4], length 0
>
> dump is attached.

Looks like you forgot to add p1p1 to the COPY column in your providers file.

-Tom
-- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________

------------------------------------------------------------------------------
For Developers, A Lot Can Happen In A Second.
Boundary is the first to Know...and Tell You.
Monitor Your Applications in Ultra-Fine Resolution. Try it FREE!
http://p.sf.net/sfu/Boundary-d2dvs2

_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users