> I notice in the dump that the MAC address of the gateway out of that
> interface is unknown:
>
> ARP
>
> ? (10.1.1.15) at 38:60:77:f1:48:db [ether] on eth0
> ? (89.96.153.137) at on eth1.89 <
> ? (10.1.1.129) at 9c:ad:97:6a:66:9d [ether] on eth0
>
> Does 'ping -I
Il 2015-11-13 17:39 Tom Eastep ha scritto:
> On 11/13/2015 7:20 AM, effemme wrote:
>> Il 2015-11-13 01:50 Tom Eastep ha scritto:
>>> On 11/12/2015 3:09 AM, effemme wrote:
>>>> Hello Tom,
>>>> yes it is enabled, either in shorewall.conf and in sysctl.conf.
Il 2015-11-13 01:50 Tom Eastep ha scritto:
On 11/12/2015 3:09 AM, effemme wrote:
Hello Tom,
yes it is enabled, either in shorewall.conf and in sysctl.conf.
This firewall actually worked without vlan on eth1.
Then we need to see the output of 'shorewall dump, collected as
described at http
Hello Tom,
yes it is enabled, either in shorewall.conf and in sysctl.conf.
This firewall actually worked without vlan on eth1.
>
> Is IP_FORWARDING set to 'Yes'?
>
> -Tom
> --
>
>
Hello,
I have shorewall 4.55 on CentOS 6.5 machine.
I have two nics , eth0 is internal lan and eth1 uses vlan tagging to
connect to two ISP (with reported fake addresses of course)
/eth1.5 -- ISP1 (1.1.1.1)
some lans --- eth0 --FW-- eth1