[LIH]Routing through Shorewall

[Thaths]

Hi,

I have the following set up:

LAN --> Gateway 1 --> ISP1
LAN --> Gateway 2 --> ISP2

Gateway2 is running Shorewall. Both gateways are doing SNAT.

I have a server on the public side of Gateway1 (i.e. on a global IP
belonging to ISP1). People using Gateway2 currently have to go
upstream to ISP2, through the public internet and back in through ISP1
to reach the said server. Obviously, this is a waste of time and
bandwidth.

I have added a static route on gateway 2 like so:

/sbin/route add -host ip.of.server.on.isp1 gw ip.of.gateway.2

>From gateway2 itself I am able to ping my server. However, I am unable
to ping server from any desktop on the LAN which is using Gateway2 as
its gateway. I suspect this is due to some rule in Shorewall. Any
clues as to how I can wrangle shorewall into allowing this packet?

Thanks.

S.
-- 
"This is everybody's fault but mine!" -- Homer J. Simpson


-------------------------------------------------------
SF.Net email is sponsored by: Discover Easy Linux Migration Strategies
from IBM. Find simple to follow Roadmaps, straightforward articles,
informative Webcasts and more! Get everything you need to get up to
speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click
_______________________________________________
linux-india-help mailing list
linux-india-help@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/linux-india-help