On 03/13/2012 02:57 PM, Don Tucker wrote: >> -Tom > Just to make sure I understand, are you saying that I do NOT need to > restart shorewall if pppd doesn't add a default route for ppp0?
Running 4.4.11.6, if ppp0 is listed in /etc/shorewall/providers then you need to 'shorewall restart' when it goes up or down. > > I tried putting 'nodefaultroute' into /etc/ppp/options, but pon would no > longer bring up the interface for some reason. Instead, I deleted the > default route as soon as the connection comes up by putting a script > into /etc/ppp/ip-up.d to "ip route del default dev ppp0". The result of > then bringing ppp0 up was that I could neither ping out of ppp0 nor > eth2. After restarting shorewall, I could then ping out of ppp0, but > still not eth2. Pinging out eth2 returned the "Destination Host > Unreachable" error. Attached is the shorewall dump after having > restarted shorewall. I see no reason why eth2 wouldn't work. What 'ping' command were you using? I assume that you were pinging from the firewall itself? > > 4.4.11 was the latest version that I could find through "aptcache > showpkg shorewall". I was wary of trying to install from the .deb and > manually managing all of the dependencies that might be required. > Roberto Sanchez (the Debian Shorewall maintainer) maintains a Squeeze repository with the latest version of Shorewall. It is linked from the Shorewall Download page. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
