On Thu, 2008-09-18 at 18:07 -0700, Tom Eastep wrote: > Ricardo Kleemann wrote: > > On Thu, 2008-09-18 at 17:59 -0700, Tom Eastep wrote: > >> Ricardo Kleemann wrote: > >>> I know packets are not being dropped so it's not shorewall that's > >>> blocking. I guess something's just not getting routed properly? If I can > >>> go net -> fw and fw -> dmz, why is the net -> dmz failing? > >> What is the output of "shorewall show zones"? > >> > > > > # shorewall show zones > > Shorewall 3.4.8 Zones at firewall - Fri Sep 19 01:02:15 UTC 2008 > > > > fw (firewall) > > net (ipv4) > > eth0:0.0.0.0/0 > > loc (ipv4) > > eth1:0.0.0.0/0 > > dmz (ipv4) > > eth2:0.0.0.0/0 > > What is the setting of IP_FORWARDING in /etc/shorewall/shorewall.conf? >
It's set to On... :-/ Could it be because I have the fw connected directly to the server (rather than via switch)? I wouldn't think so since ping from the firewall (fw -> dmz) works... it's just from the net -> dmz that doesn't work... ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
