Hi, today I changed a VLAN settings for a WLAN segment from a /24 to a /21 setting.
The /21 segment is new, newer used and not in use by any other part in our network. The clients getting ip addresses from that segment can access all services within our internal lan, but everything attached (DMZ) or behind our shorewall fails. The strange thing is in the shorewall sytsmes logs, SRC/DST are switched ... or do i get something wrong? e.g. Oct 23 11:54:26 klee kernel: Shorewall:sfilter:DROP:IN=eth0 OUT=eth0 SRC=209.85.148.113 DST=192.168.8.48 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=25147 PROTO=TCP SPT=80 DPT=50032 WINDOW=14180 RES=0x00 ACK SYN URGP=0 My Notebook has the IP 192.168.8.48 and http://209.85.148.113/ = google .. I run shorewall 4.4.27.3; in masq there is the entry eth0 192.168.8.0/21 Any suggestions, ideas, .....? All old VLANs etc work like expected, DNS and DHCP works to ... Thanks and best regards . Götz -- Götz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail [email protected] Filmakademie Baden-Württemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: Jürgen Walter MdL Staatssekretär im Ministerium für Wissenschaft, Forschung und Kunst Baden-Württemberg Geschäftsführer: Prof. Thomas Schadt
smime.p7s
Description: S/MIME Kryptografische Unterschrift
------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_sfd2d_oct
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
