Gilberto Nunes wrote: > Hi Tom > > Thank you for your response... > > I check shorewall.conf file, and I found this line: > > IP_FORWARDING=Keep > > May be I have to change to IP_FORWARDING=yes?
I told you to be sure it was set to 'On'. Why would you set it to 'Yes'? 'Yes' is not 'On'! This Debian-specific issue is clearly documented in the two-interface QuickStart Guide (http://www.shorewall.net/two-interfaces.htm). From 'man shorewall.conf' (which is available on the Shorewall website in case you are still running 3.2.6 which didn't have manpages). IP_FORWARDING=[On|Off|Keep] This parameter determines whether Shorewall enables or disables IPV4 Packet Forwarding (/proc/sys/net/ipv4/ip_forward). Possible values are: On or on packet forwarding will be enabled. Off or off packet forwarding will be disabled. Keep or keep Shorewall will neither enable nor disable packet forwarding. If this variable is not set or is given an empty value (IP_FORWARD="") then IP_FORWARD=On is assumed. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
