On Sun, 2007-07-08 at 16:29 -0700, Tom Eastep wrote:
>
> So please help us help you and:
>
> a) Collect the output of "shorewall dump" as described at
> http://www.shorewall.net/support.htm#Guidelines
>
> b) Explain to us how this configuration is failing.
>
Thank you Tom, I'll try to be more meticulous about this.
I'm unable to get any connection out of the network on either the
192.168.0.0 network or 192.168.1.0 network. Communication from the
firewall is fine, through the interface that has a gateway assigned to
it.
What I'm trying to have happen here is having the networks 192.168.0.0
and 192.168.1.0 be masq'd to separate providers, no balancing, just
straight NAT.
The dump is attached. Thanks again.
Shorewall 3.4.4 Dump at edge.nfcd.org - Sun Jul 8 19:26:26 EDT 2007
Counters reset Sun Jul 8 17:58:04 EDT 2007
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
2098 489K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
182 70427 eth0_in all -- eth0 * 0.0.0.0/0 0.0.0.0/0
357 71966 eth1_in all -- eth1 * 0.0.0.0/0 0.0.0.0/0
12203 16M eth2_in all -- eth2 * 0.0.0.0/0 0.0.0.0/0
183K 8628K eth3_in all -- eth3 * 0.0.0.0/0 0.0.0.0/0
0 0 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:INPUT:DROP:'
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP 6 packets, 428 bytes)
pkts bytes target prot opt in out source destination
1517 133K eth0_fwd all -- eth0 * 0.0.0.0/0 0.0.0.0/0
1051 146K eth1_fwd all -- eth1 * 0.0.0.0/0 0.0.0.0/0
133 19312 eth2_fwd all -- eth2 * 0.0.0.0/0 0.0.0.0/0
28618 2102K eth3_fwd all -- eth3 * 0.0.0.0/0 0.0.0.0/0
0 0 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:FORWARD:DROP:'
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
2098 489K ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
24 1152 eth0_out all -- * eth0 0.0.0.0/0 0.0.0.0/0
375 29452 eth1_out all -- * eth1 0.0.0.0/0 0.0.0.0/0
7661 736K eth2_out all -- * eth2 0.0.0.0/0 0.0.0.0/0
293K 232M eth3_out all -- * eth3 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain Drop (4 references)
pkts bytes target prot opt in out source destination
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:113
46 28250 dropBcast all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 3 code 4
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 11
27 19118 dropInvalid all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,445
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:137:139
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:137 dpts:1024:65535
0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,139,445
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1900
6 9000 dropNotSyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:53
Chain Reject (0 references)
pkts bytes target prot opt in out source destination
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:113
0 0 dropBcast all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 3 code 4
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 11
0 0 dropInvalid all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,445
0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:137:139
0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:137 dpts:1024:65535
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,139,445
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1900
0 0 dropNotSyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:53
Chain dropBcast (2 references)
pkts bytes target prot opt in out source destination
19 9132 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
PKTTYPE = broadcast
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
PKTTYPE = multicast
Chain dropInvalid (2 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID
Chain dropNotSyn (2 references)
pkts bytes target prot opt in out source destination
6 9000 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp flags:!0x16/0x02
Chain dynamic (8 references)
pkts bytes target prot opt in out source destination
Chain eth0_fwd (1 references)
pkts bytes target prot opt in out source destination
207 13604 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
1 70 lan12all all -- * eth1 0.0.0.0/0 0.0.0.0/0
1516 133K lan12all all -- * eth2 0.0.0.0/0 0.0.0.0/0
0 0 lan12all all -- * eth3 0.0.0.0/0 0.0.0.0/0
Chain eth0_in (1 references)
pkts bytes target prot opt in out source destination
168 69749 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
182 70427 lan12all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth0_out (1 references)
pkts bytes target prot opt in out source destination
24 1152 fw2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth1_fwd (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
0 0 wan12all all -- * eth2 0.0.0.0/0 0.0.0.0/0
1051 146K wan12all all -- * eth0 0.0.0.0/0 0.0.0.0/0
0 0 wan12all all -- * eth3 0.0.0.0/0 0.0.0.0/0
Chain eth1_in (1 references)
pkts bytes target prot opt in out source destination
39 18858 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
357 71966 wan12all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth1_out (1 references)
pkts bytes target prot opt in out source destination
375 29452 fw2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth2_fwd (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
0 0 wan22all all -- * eth1 0.0.0.0/0 0.0.0.0/0
0 0 wan22all all -- * eth0 0.0.0.0/0 0.0.0.0/0
133 19312 wan22all all -- * eth3 0.0.0.0/0 0.0.0.0/0
Chain eth2_in (1 references)
pkts bytes target prot opt in out source destination
7 9392 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
12203 16M wan22all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth2_out (1 references)
pkts bytes target prot opt in out source destination
7661 736K fw2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth3_fwd (1 references)
pkts bytes target prot opt in out source destination
27440 1956K dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
28565 2095K lan22all all -- * eth1 0.0.0.0/0 0.0.0.0/0
53 6944 lan22all all -- * eth2 0.0.0.0/0 0.0.0.0/0
0 0 lan22all all -- * eth0 0.0.0.0/0 0.0.0.0/0
Chain eth3_in (1 references)
pkts bytes target prot opt in out source destination
172 69933 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID,NEW
183K 8628K lan22all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth3_out (1 references)
pkts bytes target prot opt in out source destination
293K 232M fw2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2all (4 references)
pkts bytes target prot opt in out source destination
300K 232M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
192 11538 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain lan12all (4 references)
pkts bytes target prot opt in out source destination
1324 120K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
375 83353 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain lan22all (4 references)
pkts bytes target prot opt in out source destination
184K 8704K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
27612 2026K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain logdrop (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:logdrop:DROP:'
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain logreject (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:logreject:REJECT:'
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain reject (7 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
PKTTYPE = broadcast
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
PKTTYPE = multicast
0 0 DROP all -- * * 255.255.255.255 0.0.0.0/0
0 0 DROP all -- * * 224.0.0.0/4 0.0.0.0/0
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with tcp-reset
0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-port-unreachable
0 0 REJECT icmp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-unreachable
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-prohibited
Chain shorewall (0 references)
pkts bytes target prot opt in out source destination
Chain smurfs (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 192.168.0.255 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 192.168.0.255 0.0.0.0/0
0 0 LOG all -- * * 134.215.238.207 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 134.215.238.207 0.0.0.0/0
0 0 LOG all -- * * 134.215.230.254 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 134.215.230.254 0.0.0.0/0
0 0 LOG all -- * * 192.168.1.255 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 192.168.1.255 0.0.0.0/0
0 0 LOG all -- * * 255.255.255.255 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 255.255.255.255 0.0.0.0/0
0 0 LOG all -- * * 224.0.0.0/4 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:smurfs:DROP:'
0 0 DROP all -- * * 224.0.0.0/4 0.0.0.0/0
Chain wan12all (4 references)
pkts bytes target prot opt in out source destination
1369 199K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
39 18858 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
21 10118 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain wan22all (4 references)
pkts bytes target prot opt in out source destination
12329 16M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
7 9392 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Log (/var/log/messages)
NAT Table
Chain PREROUTING (policy ACCEPT 7323 packets, 625K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 7005 packets, 516K bytes)
pkts bytes target prot opt in out source destination
6897 511K eth1_masq all -- * eth1 0.0.0.0/0 0.0.0.0/0
223 13677 eth2_masq all -- * eth2 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 206 packets, 12398 bytes)
pkts bytes target prot opt in out source destination
Chain eth1_masq (1 references)
pkts bytes target prot opt in out source destination
133 9108 SNAT all -- * * 192.168.0.0/24 0.0.0.0/0
to:134.215.238.202
Chain eth2_masq (1 references)
pkts bytes target prot opt in out source destination
21 1443 SNAT all -- * * 192.168.1.0/24 0.0.0.0/0
to:134.215.230.226
0 0 SNAT all -- * * 169.254.0.0/16 0.0.0.0/0
to:134.215.230.226
Mangle Table
Chain PREROUTING (policy ACCEPT 230K packets, 28M bytes)
pkts bytes target prot opt in out source destination
230K 28M tcpre all -- * * 0.0.0.0/0 0.0.0.0/0
Chain INPUT (policy ACCEPT 198K packets, 25M bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 31326 packets, 2401K bytes)
pkts bytes target prot opt in out source destination
31320 2401K tcfor all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 303K packets, 233M bytes)
pkts bytes target prot opt in out source destination
303K 233M tcout all -- * * 0.0.0.0/0 0.0.0.0/0
Chain POSTROUTING (policy ACCEPT 334K packets, 235M bytes)
pkts bytes target prot opt in out source destination
334K 235M tcpost all -- * * 0.0.0.0/0 0.0.0.0/0
Chain tcfor (1 references)
pkts bytes target prot opt in out source destination
Chain tcout (1 references)
pkts bytes target prot opt in out source destination
Chain tcpost (1 references)
pkts bytes target prot opt in out source destination
Chain tcpre (1 references)
pkts bytes target prot opt in out source destination
Conntrack Table
udp 17 6 src=192.168.1.110 dst=204.34.198.40 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.110 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 6 src=192.168.1.109 dst=192.5.41.40 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.109 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 8 src=192.168.1.105 dst=192.5.41.40 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.105 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 27 src=192.168.1.105 dst=8.5.248.245 sport=35185 dport=15044
packets=7 bytes=504 [UNREPLIED] src=8.5.248.245 dst=192.168.1.105 sport=15044
dport=35185 packets=0 bytes=0 use=1
udp 17 29 src=192.168.1.106 dst=8.5.248.243 sport=55454 dport=15044
packets=6 bytes=432 [UNREPLIED] src=8.5.248.243 dst=192.168.1.106 sport=15044
dport=55454 packets=0 bytes=0 use=1
udp 17 22 src=192.168.1.104 dst=128.9.176.30 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.104 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 27 src=192.168.1.104 dst=8.5.248.199 sport=49164 dport=15044
packets=9 bytes=648 [UNREPLIED] src=8.5.248.199 dst=192.168.1.104 sport=15044
dport=49164 packets=0 bytes=0 use=1
udp 17 20 src=192.168.1.106 dst=8.5.248.200 sport=55454 dport=15044
packets=14 bytes=1008 [UNREPLIED] src=8.5.248.200 dst=192.168.1.106 sport=15044
dport=55454 packets=0 bytes=0 use=1
udp 17 8 src=192.168.1.109 dst=204.34.198.40 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.109 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 5 src=192.168.1.106 dst=204.34.198.40 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.106 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 5 src=192.168.1.110 dst=8.5.248.245 sport=48477 dport=15044
packets=14 bytes=1008 [UNREPLIED] src=8.5.248.245 dst=192.168.1.110 sport=15044
dport=48477 packets=0 bytes=0 use=1
udp 17 107 src=134.215.238.202 dst=134.215.238.203 sport=32807 dport=53
packets=4 bytes=246 src=134.215.238.203 dst=134.215.238.202 sport=53
dport=32807 packets=4 bytes=850 [ASSURED] use=1
udp 17 28 src=192.168.1.108 dst=8.5.248.245 sport=62562 dport=15044
packets=13 bytes=936 [UNREPLIED] src=8.5.248.245 dst=192.168.1.108 sport=15044
dport=62562 packets=0 bytes=0 use=1
udp 17 24 src=192.168.1.104 dst=192.5.41.40 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.104 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 157 src=192.168.0.158 dst=8.5.248.213 sport=38749 dport=15044
packets=26 bytes=3603 src=8.5.248.213 dst=134.215.238.202 sport=15044
dport=38749 packets=10 bytes=1135 [ASSURED] use=1
udp 17 3 src=192.168.1.109 dst=128.9.176.30 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.109 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 25 src=192.168.1.108 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.108 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 28 src=192.168.1.103 dst=216.165.129.157 sport=1281 dport=53
packets=5 bytes=300 [UNREPLIED] src=216.165.129.157 dst=192.168.1.103 sport=53
dport=1281 packets=0 bytes=0 use=1
udp 17 14 src=0.0.0.0 dst=255.255.255.255 sport=68 dport=67 packets=12
bytes=5920 [UNREPLIED] src=255.255.255.255 dst=0.0.0.0 sport=67 dport=68
packets=0 bytes=0 use=1
udp 17 23 src=192.168.1.101 dst=63.209.12.245 sport=40630 dport=15044
packets=14 bytes=1008 [UNREPLIED] src=63.209.12.245 dst=192.168.1.101
sport=15044 dport=40630 packets=0 bytes=0 use=1
udp 17 20 src=192.168.1.103 dst=204.152.184.72 sport=1280 dport=123
packets=2 bytes=152 [UNREPLIED] src=204.152.184.72 dst=192.168.1.103 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 4 src=192.168.1.110 dst=192.5.41.40 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.110 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 28 src=192.168.1.108 dst=128.9.176.30 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.108 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 29 src=192.168.1.101 dst=63.209.12.246 sport=40630 dport=15044
packets=6 bytes=432 [UNREPLIED] src=63.209.12.246 dst=192.168.1.101 sport=15044
dport=40630 packets=0 bytes=0 use=1
tcp 6 82 TIME_WAIT src=134.215.230.226 dst=66.199.187.40 sport=32904
dport=80 packets=39 bytes=5663 src=66.199.187.40 dst=134.215.230.226 sport=80
dport=32904 packets=36 bytes=43039 [ASSURED] use=1
udp 17 0 src=192.168.1.110 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.110 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 24 src=192.168.1.102 dst=128.9.176.30 sport=1280 dport=123
packets=1 bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.102 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 4 src=192.168.1.105 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.105 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 3 src=192.168.1.106 dst=192.5.41.40 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.106 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 27 src=192.168.1.103 dst=204.34.198.40 sport=1280 dport=123
packets=2 bytes=152 [UNREPLIED] src=204.34.198.40 dst=192.168.1.103 sport=123
dport=1280 packets=0 bytes=0 use=1
tcp 6 82 TIME_WAIT src=134.215.230.226 dst=66.199.187.40 sport=32905
dport=80 packets=48 bytes=5531 src=66.199.187.40 dst=134.215.230.226 sport=80
dport=32905 packets=54 bytes=69518 [ASSURED] use=1
udp 17 28 src=192.168.0.187 dst=192.168.0.255 sport=138 dport=138
packets=2 bytes=478 [UNREPLIED] src=192.168.0.255 dst=192.168.0.187 sport=138
dport=138 packets=0 bytes=0 use=1
udp 17 22 src=192.168.1.102 dst=204.152.184.72 sport=1280 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.102 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 15 src=192.168.0.158 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 src=204.152.184.72 dst=134.215.238.202 sport=123 dport=1281
packets=1 bytes=76 use=1
udp 17 22 src=192.168.1.103 dst=128.9.176.30 sport=1280 dport=123
packets=2 bytes=152 [UNREPLIED] src=128.9.176.30 dst=192.168.1.103 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 11 src=192.168.1.104 dst=192.84.16.23 sport=1280 dport=53 packets=5
bytes=300 [UNREPLIED] src=192.84.16.23 dst=192.168.1.104 sport=53 dport=1280
packets=0 bytes=0 use=1
udp 17 26 src=192.168.1.104 dst=204.34.198.40 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.104 sport=123
dport=1281 packets=0 bytes=0 use=1
tcp 6 431934 ESTABLISHED src=134.215.230.226 dst=64.233.167.104
sport=32906 dport=80 packets=12 bytes=1658 src=64.233.167.104
dst=134.215.230.226 sport=80 dport=32906 packets=10 bytes=9230 [ASSURED] use=1
udp 17 27 src=192.168.1.110 dst=8.5.248.246 sport=48477 dport=15044
packets=11 bytes=792 [UNREPLIED] src=8.5.248.246 dst=192.168.1.110 sport=15044
dport=48477 packets=0 bytes=0 use=1
udp 17 27 src=192.168.1.102 dst=8.5.248.219 sport=40074 dport=15044
packets=12 bytes=864 [UNREPLIED] src=8.5.248.219 dst=192.168.1.102 sport=15044
dport=40074 packets=0 bytes=0 use=1
udp 17 1 src=192.168.1.109 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.109 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 21 src=192.168.1.109 dst=5.0.0.0 sport=50724 dport=25047 packets=14
bytes=1008 [UNREPLIED] src=5.0.0.0 dst=192.168.1.109 sport=25047 dport=50724
packets=0 bytes=0 use=1
udp 17 11 src=192.168.1.104 dst=134.215.238.203 sport=1280 dport=53
packets=14 bytes=840 [UNREPLIED] src=134.215.238.203 dst=192.168.1.104 sport=53
dport=1280 packets=0 bytes=0 use=1
udp 17 24 src=192.168.1.103 dst=192.5.41.40 sport=1280 dport=123 packets=2
bytes=152 [UNREPLIED] src=192.5.41.40 dst=192.168.1.103 sport=123 dport=1280
packets=0 bytes=0 use=1
udp 17 14 src=192.168.1.105 dst=8.5.248.244 sport=35185 dport=15044
packets=14 bytes=1008 [UNREPLIED] src=8.5.248.244 dst=192.168.1.105 sport=15044
dport=35185 packets=0 bytes=0 use=1
udp 17 27 src=192.168.1.101 dst=204.152.184.72 sport=1280 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.101 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 3 src=192.168.1.102 dst=192.84.16.23 sport=1281 dport=53 packets=5
bytes=300 [UNREPLIED] src=192.84.16.23 dst=192.168.1.102 sport=53 dport=1281
packets=0 bytes=0 use=1
udp 17 28 src=192.168.1.102 dst=204.34.198.40 sport=1280 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.102 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 178 src=192.168.0.158 dst=8.5.248.213 sport=64702 dport=15044
packets=81 bytes=7734 src=8.5.248.213 dst=134.215.238.202 sport=15044
dport=64702 packets=50 bytes=7174 [ASSURED] use=1
tcp 6 431996 ESTABLISHED src=134.215.230.226 dst=134.215.224.133
sport=32781 dport=143 packets=3804 bytes=209272 src=134.215.224.133
dst=134.215.230.226 sport=143 dport=32781 packets=7347 bytes=10262317 [ASSURED]
use=1
udp 17 29 src=192.168.1.101 dst=128.9.176.30 sport=1280 dport=123
packets=1 bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.101 sport=123
dport=1280 packets=0 bytes=0 use=1
udp 17 2 src=192.168.1.110 dst=128.9.176.30 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.110 sport=123 dport=1281
packets=0 bytes=0 use=1
tcp 6 431999 ESTABLISHED src=192.168.1.3 dst=192.168.0.254 sport=1494
dport=5901 packets=183111 bytes=8551146 src=192.168.0.254 dst=192.168.1.3
sport=5901 dport=1494 packets=292411 bytes=231623694 [ASSURED] use=1
udp 17 1 src=192.168.1.106 dst=128.9.176.30 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.106 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 20 src=192.168.1.104 dst=204.152.184.72 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.152.184.72 dst=192.168.1.104 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 26 src=192.168.1.102 dst=192.5.41.40 sport=1280 dport=123 packets=1
bytes=76 [UNREPLIED] src=192.5.41.40 dst=192.168.1.102 sport=123 dport=1280
packets=0 bytes=0 use=1
udp 17 10 src=192.168.1.105 dst=204.34.198.40 sport=1281 dport=123
packets=1 bytes=76 [UNREPLIED] src=204.34.198.40 dst=192.168.1.105 sport=123
dport=1281 packets=0 bytes=0 use=1
udp 17 167 src=192.168.0.158 dst=134.215.238.203 sport=1280 dport=53
packets=4 bytes=266 src=134.215.238.203 dst=134.215.238.202 sport=53 dport=1280
packets=4 bytes=894 [ASSURED] use=1
udp 17 11 src=192.168.1.103 dst=151.0.0.4 sport=34446 dport=19885
packets=14 bytes=1008 [UNREPLIED] src=151.0.0.4 dst=192.168.1.103 sport=19885
dport=34446 packets=0 bytes=0 use=1
udp 17 6 src=192.168.1.105 dst=128.9.176.30 sport=1281 dport=123 packets=1
bytes=76 [UNREPLIED] src=128.9.176.30 dst=192.168.1.105 sport=123 dport=1281
packets=0 bytes=0 use=1
udp 17 0 src=192.168.1.108 dst=8.5.248.244 sport=62562 dport=15044
packets=14 bytes=1008 [UNREPLIED] src=8.5.248.244 dst=192.168.1.108 sport=15044
dport=62562 packets=0 bytes=0 use=1
udp 17 28 src=192.168.0.187 dst=192.168.0.255 sport=137 dport=137
packets=10 bytes=960 [UNREPLIED] src=192.168.0.255 dst=192.168.0.187 sport=137
dport=137 packets=0 bytes=0 use=1
tcp 6 430447 ESTABLISHED src=192.168.1.3 dst=192.168.0.254 sport=1492
dport=22 packets=50 bytes=5396 src=192.168.0.254 dst=192.168.1.3 sport=22
dport=1492 packets=49 bytes=6830 [ASSURED] use=1
IP Configuration
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:07:e9:1e:33:27 brd ff:ff:ff:ff:ff:ff
inet 192.168.0.254/24 brd 192.168.0.255 scope global eth0
inet6 fe80::207:e9ff:fe1e:3327/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:13:46:78:0c:6e brd ff:ff:ff:ff:ff:ff
inet 134.215.238.202/29 brd 134.215.238.207 scope global eth1
inet6 fe80::213:46ff:fe78:c6e/64 scope link
valid_lft forever preferred_lft forever
4: eth2: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:50:bf:91:6b:d6 brd ff:ff:ff:ff:ff:ff
inet 134.215.230.226/27 brd 134.215.230.254 scope global eth2
inet6 fe80::250:bfff:fe91:6bd6/64 scope link
valid_lft forever preferred_lft forever
5: eth3: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:04:5a:80:48:01 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.1/24 brd 192.168.1.255 scope global eth3
inet6 fe80::204:5aff:fe80:4801/64 scope link
valid_lft forever preferred_lft forever
6: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
IP Stats
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
RX: bytes packets errors dropped overrun mcast
489148 2098 0 0 0 0
TX: bytes packets errors dropped carrier collsns
489148 2098 0 0 0 0
2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:07:e9:1e:33:27 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
520762 6172 0 0 0 0
TX: bytes packets errors dropped carrier collsns
221107 1751 0 0 0 0
3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:13:46:78:0c:6e brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
675961 8709 0 0 0 0
TX: bytes packets errors dropped carrier collsns
2545349 29341 0 0 0 0
4: eth2: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:50:bf:91:6b:d6 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
16181073 12489 0 0 0 0
TX: bytes packets errors dropped carrier collsns
1017063 9359 0 0 0 0
5: eth3: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:04:5a:80:48:01 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
14340063 216603 0 0 0 0
TX: bytes packets errors dropped carrier collsns
235829008 293209 0 0 0 0
6: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
RX: bytes packets errors dropped overrun mcast
0 0 0 0 0 0
TX: bytes packets errors dropped carrier collsns
0 0 0 0 0 0
Bridges
bridge name bridge id STP enabled interfaces
PFKEY SPD
No SPD entries.
PFKEY SAD
No SAD entries.
/proc
/proc/version = Linux version 2.6.9-42.0.8.EL ([EMAIL PROTECTED]) (gcc
version 3.4.6 20060404 (Red Hat 3.4.6-3)) #1 Tue Jan 30 12:10:22 EST 2007
/proc/sys/net/ipv4/ip_forward = 1
/proc/sys/net/ipv4/icmp_echo_ignore_all = 0
/proc/sys/net/ipv4/conf/all/proxy_arp = 0
/proc/sys/net/ipv4/conf/all/arp_filter = 0
/proc/sys/net/ipv4/conf/all/arp_ignore = 0
/proc/sys/net/ipv4/conf/all/rp_filter = 0
/proc/sys/net/ipv4/conf/all/log_martians = 0
/proc/sys/net/ipv4/conf/default/proxy_arp = 0
/proc/sys/net/ipv4/conf/default/arp_filter = 0
/proc/sys/net/ipv4/conf/default/arp_ignore = 0
/proc/sys/net/ipv4/conf/default/rp_filter = 1
/proc/sys/net/ipv4/conf/default/log_martians = 0
/proc/sys/net/ipv4/conf/eth0/proxy_arp = 0
/proc/sys/net/ipv4/conf/eth0/arp_filter = 0
/proc/sys/net/ipv4/conf/eth0/arp_ignore = 0
/proc/sys/net/ipv4/conf/eth0/rp_filter = 1
/proc/sys/net/ipv4/conf/eth0/log_martians = 0
/proc/sys/net/ipv4/conf/eth1/proxy_arp = 0
/proc/sys/net/ipv4/conf/eth1/arp_filter = 0
/proc/sys/net/ipv4/conf/eth1/arp_ignore = 0
/proc/sys/net/ipv4/conf/eth1/rp_filter = 1
/proc/sys/net/ipv4/conf/eth1/log_martians = 0
/proc/sys/net/ipv4/conf/eth2/proxy_arp = 0
/proc/sys/net/ipv4/conf/eth2/arp_filter = 0
/proc/sys/net/ipv4/conf/eth2/arp_ignore = 0
/proc/sys/net/ipv4/conf/eth2/rp_filter = 1
/proc/sys/net/ipv4/conf/eth2/log_martians = 0
/proc/sys/net/ipv4/conf/eth3/proxy_arp = 0
/proc/sys/net/ipv4/conf/eth3/arp_filter = 0
/proc/sys/net/ipv4/conf/eth3/arp_ignore = 0
/proc/sys/net/ipv4/conf/eth3/rp_filter = 1
/proc/sys/net/ipv4/conf/eth3/log_martians = 0
/proc/sys/net/ipv4/conf/lo/proxy_arp = 0
/proc/sys/net/ipv4/conf/lo/arp_filter = 0
/proc/sys/net/ipv4/conf/lo/arp_ignore = 0
/proc/sys/net/ipv4/conf/lo/rp_filter = 1
/proc/sys/net/ipv4/conf/lo/log_martians = 0
Routing Rules
0: from all lookup local
1000: from all iif eth3 lookup TDS1
1000: from all iif eth0 lookup TDS2
10001: from all fwmark 0x1 lookup TDS1
10002: from all fwmark 0x2 lookup TDS2
20000: from 134.215.238.202 lookup TDS1
20256: from 134.215.230.226 lookup TDS2
32766: from all lookup main
32767: from all lookup default
Table default:
Table local:
local 192.168.1.1 dev eth3 proto kernel scope host src 192.168.1.1
local 192.168.0.254 dev eth0 proto kernel scope host src 192.168.0.254
broadcast 192.168.1.0 dev eth3 proto kernel scope link src 192.168.1.1
broadcast 134.215.238.207 dev eth1 proto kernel scope link src
134.215.238.202
broadcast 192.168.0.255 dev eth0 proto kernel scope link src 192.168.0.254
broadcast 127.255.255.255 dev lo proto kernel scope link src 127.0.0.1
broadcast 134.215.230.255 dev eth2 proto kernel scope link src
134.215.230.226
broadcast 134.215.230.254 dev eth2 proto kernel scope link src
134.215.230.226
local 134.215.238.202 dev eth1 proto kernel scope host src 134.215.238.202
broadcast 134.215.238.200 dev eth1 proto kernel scope link src
134.215.238.202
broadcast 192.168.1.255 dev eth3 proto kernel scope link src 192.168.1.1
broadcast 192.168.0.0 dev eth0 proto kernel scope link src 192.168.0.254
broadcast 134.215.230.224 dev eth2 proto kernel scope link src
134.215.230.226
broadcast 127.0.0.0 dev lo proto kernel scope link src 127.0.0.1
local 134.215.230.226 dev eth2 proto kernel scope host src 134.215.230.226
local 127.0.0.1 dev lo proto kernel scope host src 127.0.0.1
local 127.0.0.0/8 dev lo proto kernel scope host src 127.0.0.1
Table main:
134.215.238.200/29 dev eth1 proto kernel scope link src 134.215.238.202
134.215.230.224/27 dev eth2 proto kernel scope link src 134.215.230.226
192.168.1.0/24 dev eth3 proto kernel scope link src 192.168.1.1
192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.254
169.254.0.0/16 dev eth3 scope link
default via 134.215.230.225 dev eth2
Table TDS1:
134.215.238.201 dev eth1 scope link src 134.215.238.202
134.215.238.200/29 dev eth1 proto kernel scope link src 134.215.238.202
192.168.1.0/24 dev eth3 proto kernel scope link src 192.168.1.1
169.254.0.0/16 dev eth3 scope link
default via 134.215.238.201 dev eth1
Table TDS2:
134.215.230.225 dev eth2 scope link src 134.215.230.226
134.215.230.224/27 dev eth2 proto kernel scope link src 134.215.230.226
192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.254
default via 134.215.230.225 dev eth2
ARP
? (192.168.1.103) at 00:30:04:09:6D:7E [ether] on eth0
? (192.168.1.102) at 00:30:04:09:71:91 [ether] on eth0
? (192.168.1.3) at 00:16:36:35:EF:81 [ether] on eth3
? (192.168.0.200) at 00:06:29:DC:FA:C5 [ether] on eth0
? (192.168.1.102) at 00:30:04:09:71:91 [ether] on eth3
? (134.215.238.203) at 00:0E:0C:4A:8B:57 [ether] on eth1
? (192.168.0.187) at 00:50:DA:15:ED:5C [ether] on eth0
? (134.215.238.201) at 00:E0:97:6B:01:31 [ether] on eth1
? (192.168.1.101) at 00:30:04:09:74:20 [ether] on eth3
? (192.168.0.158) at 00:16:E3:E5:B5:2F [ether] on eth3
? (192.168.1.103) at 00:30:04:09:6D:7E [ether] on eth3
? (134.215.230.225) at 00:E0:97:6B:7B:E4 [ether] on eth2
? (192.168.0.163) at 00:16:76:A7:18:82 [ether] on eth0
? (134.215.238.204) at 00:0E:0C:4A:8B:57 [ether] on eth1
? (192.168.0.158) at 00:16:E3:E5:B5:2F [ether] on eth0
? (192.168.1.104) at 00:16:E3:E5:B9:FA [ether] on eth3
Modules
ip_conntrack 41077 14
ipt_NOTRACK,ipt_MASQUERADE,ipt_helper,ipt_conntrack,ip_nat_tftp,ip_nat_irc,ip_nat_ftp,ip_nat_amanda,ip_conntrack_tftp,ip_conntrack_irc,ip_conntrack_ftp,ip_conntrack_amanda,iptable_nat,ipt_state
ip_conntrack_amanda 70113 1 ip_nat_amanda
ip_conntrack_ftp 72817 1 ip_nat_ftp
ip_conntrack_irc 72177 1 ip_nat_irc
ip_conntrack_tftp 4081 0
ip_nat_amanda 2813 0
ip_nat_ftp 5041 0
ip_nat_irc 4529 0
ip_nat_snmp_basic 10949 0
ip_nat_tftp 3889 0
iptable_filter 3009 1
iptable_mangle 2881 1
iptable_nat 23549 10
ipt_SAME,ipt_REDIRECT,ipt_NETMAP,ipt_MASQUERADE,ip_nat_tftp,ip_nat_snmp_basic,ip_nat_irc,ip_nat_ftp,ip_nat_amanda
iptable_raw 2113 0
ip_tables 17601 42
iptable_raw,ipt_ULOG,ipt_ttl,ipt_TOS,ipt_tos,ipt_TCPMSS,ipt_tcpmss,ipt_sctp,ipt_SAME,ipt_REDIRECT,ipt_recent,ipt_realm,ipt_pkttype,ipt_physdev,ipt_owner,ipt_NOTRACK,ipt_NETMAP,ipt_multiport,ipt_MASQUERADE,ipt_MARK,ipt_mark,ipt_mac,ipt_LOG,ipt_limit,ipt_length,ipt_iprange,ipt_helper,ipt_esp,ipt_ECN,ipt_ecn,ipt_DSCP,ipt_dscp,ipt_conntrack,ipt_comment,ipt_CLASSIFY,ipt_ah,ipt_addrtype,iptable_nat,iptable_mangle,ipt_REJECT,ipt_state,iptable_filter
ipt_addrtype 2113 0
ipt_ah 1985 0
ipt_CLASSIFY 2241 0
ipt_comment 1729 0
ipt_conntrack 2497 0
ipt_dscp 1857 0
ipt_DSCP 2497 0
ipt_ecn 2241 0
ipt_ECN 3265 0
ipt_esp 1985 0
ipt_helper 2113 0
ipt_iprange 2113 0
ipt_length 1857 0
ipt_limit 3009 0
ipt_LOG 6593 10
ipt_mac 2113 0
ipt_mark 1729 0
ipt_MARK 2113 0
ipt_MASQUERADE 3777 0
ipt_multiport 2113 4
ipt_NETMAP 2241 0
ipt_NOTRACK 2113 0
ipt_owner 4545 0
ipt_physdev 2129 0
ipt_pkttype 1729 4
ipt_realm 1985 0
ipt_recent 13261 0
ipt_REDIRECT 2241 0
ipt_REJECT 6721 4
ipt_SAME 2880 0
ipt_sctp 2881 0
ipt_state 1985 14
ipt_tcpmss 2369 0
ipt_TCPMSS 4161 0
ipt_tos 1729 0
ipt_TOS 2497 0
ipt_ttl 1985 0
ipt_ULOG 9029 0
Shorewall has detected the following iptables/netfilter capabilities:
NAT: Available
Packet Mangling: Available
Multi-port Match: Available
Extended Multi-port Match: Not available
Connection Tracking Match: Available
Packet Type Match: Available
Policy Match: Not available
Physdev Match: Available
Packet length Match: Available
IP range Match: Available
Recent Match: Available
Owner Match: Available
Ipset Match: Not available
CONNMARK Target: Not available
Connmark Match: Not available
Raw Table: Available
IPP2P Match: Not available
CLASSIFY Target: Available
Extended REJECT: Available
Repeat match: Not available
MARK Target: Available
Extended MARK Target: Not available
Mangle FORWARD Chain: Available
Comments: Not available
Address Type Match: Not available
TCPMSS Match: Available
Traffic Control
Device eth0:
qdisc pfifo_fast 0: bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1
Sent 221107 bytes 1751 pkts (dropped 0, overlimits 0 requeues 0)
Device eth1:
qdisc pfifo_fast 0: bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1
Sent 2545525 bytes 29343 pkts (dropped 0, overlimits 0 requeues 0)
Device eth2:
qdisc pfifo_fast 0: bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1
Sent 1011465 bytes 9359 pkts (dropped 0, overlimits 0 requeues 0)
Device eth3:
qdisc pfifo_fast 0: bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1
Sent 235832482 bytes 293216 pkts (dropped 0, overlimits 0 requeues 0)
TC Filters
Device eth0:
Device eth1:
Device eth2:
Device eth3:
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
