Also keep in mind that it works find on a non-mosix kernel. This would seem to indicate that it is a kernel issue not a shorewall issue.
So here is what I think the question is: What kernel feature is shorewall trying to use in those last couple of lines?
ever see Sesame Street? They've got this really cool song, it goes "One of these things is not like the other, one of these things is not the same..." :-)
Try using run_iptables instead of iptables.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
