shorewall-users April 2012 archive
Main Archive Page > Month Archives  > shorewall-users archives
shorewall-users: Re: [Shorewall-users] Multiple internal interfa

Re: [Shorewall-users] Multiple internal interfaces

From: Orion Poplawski <orion_at_nospam>
Date: Thu Apr 12 2012 - 18:21:25 GMT
To: Shorewall Users <shorewall-users@lists.sourceforge.net>

On 04/12/2012 12:11 PM, Tom Eastep wrote:
> On 4/12/12 10:57 AM, Orion Poplawski wrote:
> here?
>>
>> I first thought it was the masq setting and so did:
>>
>> p2p2:!10.0.0.0/8 10.0.0.0/8 4.28.99.98
>>
>> but it still routes it out p2p2:
>
> Entries in /etc/shorewall/masq *never* change the routing of a packet.
>

Yeah, it didn't make sense, but I was desperate :)

>>
>> 11:22:02.561155 IP 10.10.20.2.53011> 10.11.0.2.http: Flags [S], seq
>> 2539220996, win 14600, options [mss 1460,sackOK,TS val 268431706 ecr
>> 0,nop,wscale 4], length 0
>>
>> dump is attached.
>
> Looks like you forgot to add p1p1 to the COPY column in your providers file.
>

Indeed. I'll have to try to remember that. Thanks!

-- Orion Poplawski Technical Manager 303-415-9701 x222 NWRA, Boulder Office FAX: 303-415-9702 3380 Mitchell Lane orion@nwra.com Boulder, CO 80301 http://www.nwra.com ------------------------------------------------------------------------------ For Developers, A Lot Can Happen In A Second. Boundary is the first to Know...and Tell You. Monitor Your Applications in Ultra-Fine Resolution. Try it FREE! http://p.sf.net/sfu/Boundary-d2dvs2 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users