Jan Mulders wrote: > I can't ping .177... Perhaps it's the broadcast address for my IP range: if > another machine can't find my mac address, it sends it to the broadcast > address which spams it out over my subnet? >
If I can ping .177 and you can't, as a guess, it sounds like your missing a route to .177 (which is not in your route dump) > [EMAIL PROTECTED] [~]# ping 67.159.49.177 > PING 67.159.49.177 (67.159.49.177) 56(84) bytes of data. > > --- 67.159.49.177 ping statistics --- > 6 packets transmitted, 0 received, 100% packet loss, time 4998ms > > 32/0.014 ms, pipe 2 > > > I've tried flushing the arp cache on my machine, and I don't think it's an > issue with my ISP (why would .177 be arping if it was cached?). > > My network diagram is along the lines of: > > [a bunch of computers] - each with IP address 67.159.49.179-190, connected > via a vpn to tun0 > | > | > [tun0 on my shorewall box] - 67.159.49.178 for convenience's sake > [shorewall with proxyarp between the two interfaces] > [eth0 on my shorewall box] - 67.159.44.246 > | > [the wild internet] - where I've been assigned 44.246 for my server, and a > range of 13 usable addresses - 49.178 to 49.190. > .177 is no one of them, it should be on your subnet: /sbin/shorewall ipcalc 67.159.49.177/28 CIDR=67.159.49.177/28 NETMASK=255.255.255.240 NETWORK=67.159.49.176 BROADCAST=67.159.49.191 Is that your isp's router? If not, what would it be? A shorewall dump would be very useful here, and you may get others looking also. Jerry ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
