On 11/20/2012 12:11 PM, Vernon Fort wrote: > Yes - this is the setup that I'm trying to change. When I set SPRINT > provider to track,fallback - all my DNATs stop working and I get > continual stream of martians in dmesg. There use to be a older > configuration setup that stated to change > Shorewall.conf/Trackprovider to Yes and set the notrack option in the > providers file but that doesn't work either. >
You *must* disable route filtering on a fallback interface. In /etc/shorewall/interfaces, specify 'routefilter=0,logmartians=0' or disable them in sysctl.conf. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
