On Tue, 2 Oct 2007 11:35:30 pm Tom Eastep wrote: > James Gray wrote: > > Thanks for such a fast response Tom. So reading between the lines, > > upgrade to 4.0.4 and try again (after reading the release notes)? > > Well, I might have started by just typing: > > echo 0 > /proc/sys/net/ipv4/conf/eth4/rp_filter
Indeed - this DID fix the problem. The options for eth4 I left with
routefilter but manually did as suggested above. Sure enough, as soon as
eth4's rp_filter was set to zero, the martians went away and traffic started
flowing.
> but upgrading will make this part of the configuration more automatic.
>
> Are the configuration file compatible?
>
> So long as you are using Shorewall-shell, yes. But you will want to modify
> your /etc/shorewall/interfaces file to specify exactly the value (0 or 1)
> that you want for 'routefilter' on each interface.
OK, so something in the options like: ...,routefilter=1,...?? If this is
documented in the release notes, please simply say RTFRN :)
Thanks again for all your help,
James
--
If God is One, what is bad?
-- Charles Manson
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
