> Because as the log message you quote says, the destination port is > 4665, which you have not allowed.
Yes, I haven't allowed this traffic, but I was not aware of that. Yes I'm a shorewall newbie. The problem was in default policy rules which I took from two-interfaces example. I add this line to policy file $FW net ACCEPT and now it's working :) ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
