Brian J. Murrell wrote: > > I think I already posted a tcpdump in this thread that showed the actual > packets that were being considered martians and at tcpdump time, there > were being addressed to the correct address. In this message: > > http://article.gmane.org/gmane.comp.security.shorewall/15379
I see. So it would seem that martian filtering is occurring *after* the destination address is getting rewritten. That seems bogus. > >> Also, do you run any client applications on the firewall box that initiate >> connections to the Internet? > > I do. OpenVPN among others "gateway" kind of software. freenet6 (ipv6 > tunnelling) which is what the traffic in question in this thread is. > Do you set 'loose' in /etc/shorewall/providers? Better yet, can you forward the output of "shorewall dump" please. Thanks, -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
