Hi, Can a shorewall bridge (with management IP address) be used as a host's default gateway?
HOST1 in loc/lan zone (10.215.146.89) -> Shorewall bridge (10.215.144.91) -> Gateway (10.215.144.90) Suppose I need to do a quick network change and I can't update the hundreds of HOSTs in the loc/lan zone which all have 10.215.144.91 as default gateway. So hosts in the loc zone need to keep "default gw 10.215.144.91". Also, suppose that the gateway at 10.215.144.90 cannot be changed either, so its IP address needs to be 10.215.144.90 and I cannot add an alias IP addr. 10.215.144.91. So the only machine I can update is the Shorewall bridge at 10.215.144.91. If I ping from 10.215.146.89 (lan zone) to 209.85.229.147 (wan/net) then ping replies only if host at 10.215.146.89 has default gateway set to 10.215.144.90. It does not reply if default gw is set to 10.215.144.91. On the shorewall bridge at 10.215.144.91 I can tcpdump packets coming from 10.215.146.89 (lan zone) and going to 209.85.229.147 on the lan/loc ethernet interface (br0:eth0) but I see no packets if tcpdump'ing on the bridge's net/wan ethernet interface (br0:eth1). Shorewall dump during the ping test: http://213.96.91.201/temp/dump.gz What could I try? Thanks, Vieri ------------------------------------------------------------------------------ Xperia(TM) PLAY It's a major breakthrough. An authentic gaming smartphone on the nation's most reliable network. And it wants your games. http://p.sf.net/sfu/verizon-sfdev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
