A thought on this...there is something different on this machine... its the
only place I have HIGH_ROUTE_MARKS=Yes...
I wonder....
On 12/13/07, Glenn Tarbox, PhD <[EMAIL PROTECTED]> wrote:
>
> Hello,
>
> So, I've gotten OpenVPN and Shorewall working in most places... just not
> where it really matters (typical :-)
>
> It seems straightforward in many ways... but, my first guess would be that
> there's a problem with traffic shaping tables and what the chains end up
> wanting to do with packets intended for the vpn (tun0)
>
> The configuration is that there is a client on the firewall / router /
> shaper. The routes all look correct when doing an ip route ls. But, no
> pings work...
>
> Wireshark confirms... when I try to ping 10.8.0.1 from the firewall its
> trying to send packets out eth0
>
> In my case, tun0 is not a device to be shaped... but I do have some strict
> rules WRT where traffic should go. However, the simple test of pinging
> stuff on the lan (also not shaped) seem fine... looks like the same kinda
> routes to me... and, looking through the normal dumps things seem ok...
>
> I've enclosed the dump.. maybe there's something truly boneheaded in
> here... wouldn't be the first time.
>
> -glenn
>
> --
> Glenn H. Tarbox, PhD
>
>
>
-------------------------------------------------------------------------
SF.Net email is sponsored by:
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services
for just about anything Open Source.
http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
