On Fri, Mar 14, 2008 at 11:18:53AM +0100, Darshaka Pathirana wrote: > Hi! > > I also had the same problem yesterday. > > After the reboot I had to issue > > % shorewall clear > % shorewall restart > > So I created a "shorewall dump" directly after rebooting and one > directly after clearing and restarting. The main difference I found was: > > - /proc/sys/net/ipv4/ip_forward = 0 > + /proc/sys/net/ipv4/ip_forward = 1 > The best thing would be if you could send a compressed shorewall dump from each of the following times:
- just after reboot - after shorewall clear - after shorewall restart If you are not comfortable sending it to the bug, then send to my email directly. > Ok, now it all makes sense. After researching the shorewall-doc I > found this: > > [1] http://www.shorewall.net/two-interface.htm#SNAT > > and > > /usr/share/doc/shorewall/README.Debian.gz > > which states to set "IP_FORWARD=On" in the shorewall.conf. > > So the problem seemed to be RTFM! > > BUT.. > > As I just copied the files from > "/usr/share/doc/shorewall/examples/two-interfaces" I think there > should be some kind of "README.Debian" too where this issue should > be mentioned! > > HTH && HAND > - Darsha I will certainly look into this. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature