He's the short I have a Dns Server running on my firewall box, as you can see
below I'm allowing all my clients on the local subnet to reach the $fw box to
resolve the DNS but the firewall thinks it's NET traffic not LOC traffic. Any
suggestions.
Running Suse 11 with Shorewall 4.2 w/perl. Tried 4.4 and the same issue,
HELP!!!!!
----------------Firewall Log ----------------
Aug 31 16:51:24 fw22 kernel: Shorewall:net2fw:DROP:IN=eth5 OUT=
MAC=00:0c:29:74:9c:0c:08:00:20:b2:5f:db:08:00 SRC=10.1.50.14 DST=10.1.50.7
LEN=57 TOS=0x00 PREC=0x00 TTL=255 ID=32302 DF PROTO=UDP SPT=53289 DPT=53 LEN=37
-----------------Zone File------------------
#ZONE TYPE OPTIONS IN OUT
# OPTIONS OPTIONS
net ipv4
loc ipv4
loc1 ipv4
fw firewall
-----------------Interfaces ----------------#ZONE INTERFACE BROADCAST OPTIONS
net eth2 detect routeback,tcpflags
loc eth0 detect
loc1 eth1 detect
-----------------Policy-------------------# LEVEL
net all DROP info
$FW loc ACCEPT info
$FW loc1 ACCEPT info
loc $FW ACCEPT info
loc1 $FW ACCEPT info
loc1 loc ACCEPT info
loc loc1 ACCEPT info
#
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
trial. Simplify your report design, integration and deployment - and focus on
what you do best, core application coding. Discover what's new with
Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
