On 2/25/11 12:18 PM, Paolo Andretta wrote:
> On Fri, 25 Feb 2011, Tom Eastep wrote:
>
> Ok, Changed in:
>
> vmbr0 192.168.109.0/241.2.3.109
> vmbr0 192.168.110.0/241.2.3.110
> vmbr0 192.168.108.0/241.2.3.108
>
> vmbr9 192.168.109.0
On Fri, 25 Feb 2011, Tom Eastep wrote:
>>> Apparently you have since it doesn't work. But until you show us what
>>> you have done, we can't tell you what you are missing.
>>>
>>> Things to check:
>>>
>>> a) That you have set 'routeback' on the internal firewall interface.
>>> b) That you have add
On 2/25/11 11:30 AM, Paolo Andretta wrote:
> On Thu, 24 Feb 2011, Tom Eastep wrote:
>
Would something roughly as documented here:
http://www.shorewall.net/FAQ.htm#faq2 help?
>>>
>>> As in the subject and in my explanation (my english is poor but hope
>>> unsterstandable), I read Faq 2 an
On Thu, 24 Feb 2011, Tom Eastep wrote:
>>> Would something roughly as documented here:
>>> http://www.shorewall.net/FAQ.htm#faq2 help?
>>
>> As in the subject and in my explanation (my english is poor but hope
>> unsterstandable), I read Faq 2 and related docs. I missed something?
>
> Apparently y
Hi,
I was finally able to capture some packets on the external interface. The
following is what happens when I try to establish a http connection to
sony.co.jp from the machine 10.0.99.99 inside the 'test' zone (the zone that
contains the VLAN).
x.x.x.42 is the IP of the external interface, 00:1b
On 2/25/11 3:04 AM, shorewall shorewall wrote:
> Any ideas what I should check?
I'll give you the same advice that I give everyone else. When installing
IPv6, you should install Shorewall and Shorewall6 *last* after IPv6 is
working. Given that IPv6 has no need for NAT, Shorewall6 is not required
On Fri, Feb 25, 2011 at 12:09 PM, Dominic Benson wrote:
> On 25/02/11 11:04, shorewall shorewall wrote:
>
> I have two Debian 6 x64 VMs running under ESXi4.1_U1. One of the VMs is
> acting as an ipv4 and ipv6 firewall/router using shorewall and has three
> virtual NICs, LAN, WAN and DMZ. I've set
On 25/02/11 11:04, shorewall shorewall wrote:
I have two Debian 6 x64 VMs running under ESXi4.1_U1. One of the VMs
is acting as an ipv4 and ipv6 firewall/router using shorewall and has
three virtual NICs, LAN, WAN and DMZ. I've set up a 6in4 ipv6 tunnel
from Hurricane Electric on the router but
I have two Debian 6 x64 VMs running under ESXi4.1_U1. One of the VMs is
acting as an ipv4 and ipv6 firewall/router using shorewall and has three
virtual NICs, LAN, WAN and DMZ. I've set up a 6in4 ipv6 tunnel from
Hurricane Electric on the router but have a peculiar problem. The router can
ping ipv6
--- On Thu, 2/24/11, Tom Eastep wrote:
> > So this should fail (DROP) but it doesn't:
> >
> > ping 192.168.144.90 (from 192.168.211.39)
>
> Looks like br0 is the 'net' zone and the implicit
> net->net policy is
> ACCEPT. If you don't want that, you need to add an explicit
> net->net
> polic
10 matches
Mail list logo
