Phil DeVries wrote: >> >> Try adding that address to the zone that corresponds to the >> Windows system and see if that helps. > > I revised my "Hosts" file from > > brloc br0:192.168.1.130-192.168.1.254 routeback,nosmurfs > > to > > brloc br0:192.168.1.130-192.168.1.254,0.0.0.0 routeback,nosmurfs. > > This did not work.
What does that mean? - Shorewall didn't start? - Your firewall erupted in flames? ??? > Also, this did not prevent the linux os from > getting an ip address from DHCP, which is what I expected. I didn't expect that side effect. The Linux OS broadcast is $FW-><whatever>; why would that be affected by the definition of brloc? If you want to pursue this, I'll need the output of "shorewall dump" collected as described at http://www.shorewall.net/support.htm# Guidelines. > > Is there another limitation here too? I presume there's no way > to guarantee that a DHCP server will grant me an address inside > the range for brloc. What happens if DHCP tries to give Windows > an address outside that range? Let's cut to the chase. Dynamic addresses are never going to work correctly with the bridge technique described at http://www.shorewall.net/NewBridge.html. Shorewall-perl has a new implementation of bridge support that uses the reduced-function physdev match support in 2.6.20 and later kernels. Shorewall 4.0.0 Beta 4 will work with kernel 2.6.20; you will have to wait until Beta 5 for complete support for 2.6.21. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
