On Fri, Apr 04, 2008 at 04:51:10PM -0700, Steve Lamb wrote: > On Fri, April 4, 2008 9:54 am, Andrew Sackville-West wrote: > > On Fri, Apr 04, 2008 at 09:17:46AM -0700, Steve Lamb wrote: > >> Something in the process I am missing is. I have to be missing > >> something since my configuration, especially this single ethernet > >> card test, should work. I can't find any glaringly obvious > >> difference from the many examples I've seen and my configurations. > >> Thank you for discussing it with me, however, since sometimes just > >> having a sounding board will get the ol' synapses firing. :) > > I think there is something here. Do you, or anyone, know if telling > Shorewall not to load in /etc/defaults/shorewall mean everything is wide > open or that it loads some set which only allows those interfaces with > routestopped to talk? If it is the latter that might be the problem
Shorewall's init.d script won't do anything if /etc/defaults/shorewall isn't configured (or maybe if the startup variable is spoofed?), according to a look at /etc/init.d/shorewall on sid. It could probably be run by other means, so I don't know if that's definitive. Running iptables --list would show what's actually configured, regardless of how shorewall is or isn't configured. Ken > since only eth0 and eth1 are in my shorewall configuration and neither > of those are actively in use under Dom0. > > > what does your Dom0 /etc/network/interfaces look like? > > > also, what about the output of route on various Doms? > > I'll have to get back to you on these two in a few hours when I have > some time. > > -- > Steve Lamb -- Ken Irving, [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]