Francesco Saverio Giudice wrote:
Hi All,I have 2 problems with MultiISP configuration: (Shorewall 4.0.8-4 on CentOS and Kernel 2.6.24 recompiled with netfilter options)Some days ago I have upgraded configuration from a 3.x version (single ISP) to actual (in sense that I have reinstalled OS from scratch not simply updated). I have added a second ISP in providers file and updated other original files (zones, etc.) to new syntax and configuration.Actual configuration is: eth0 lan eth1 ISP1 (new provider) eth2 ISP2 (existing provider)eth3 DMZ (with public ip on existing provider and some servers defined in proxyarp)Problems are: 1) Restart lock if I issue a 'shorewall restart' command I get an error on ---------------- IP Forwarding Enabled Setting up Proxy ARP... RTNETLINK answers: File exists ERROR: Command "ip route replace AAA.AAA.AAA.5 dev eth3" Failed
This seems to be a bug in recent kernels/iproute2 -- attempting to replace a route fails with 'File exists'. This should never happen -- that's the whole point of using 'replace' rather than 'add'.
Please try this:
ip route add 1.2.4.5 dev eth3
ip route replace 1.2.4.5 dev eth3
Do you get an error? You shouldn't.
Regardless, after the test enter 'ip route del 1.2.4.5'.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
