> Hey Simon, yes Debian does keep the mac addresses mapped to the > interface, eth0, eth1, etc. but that has no bearing on shorewall, unless > shorewall somewhere has the mac address of the interface in it's > configuration, which I have never seen before. > > The router eth0 plugs into, to get out to the internet, had it's arp > tables cleared a couple times by the network guys. This firewall I am > replacing is at a co-location so I am at the mercy of their support. > > You did spark an idea though, if it is in fact the arp tables, I can try > and give eth0 an unused public IP and see if it'll let me out then. > Thanks for sparking that idea. I'll stay up late tonight and see if I > can't get it going. I will let you know what I find out.
You could also try arping to force the router to pick up new arp entries. Simon ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
