On 07/12/2012 08:09 AM, Nathan Kennedy wrote: > Greetings, > > I have been running in a ProxyARP configuration for our Asterisk PBX for > over a year now without a hitch and recently it seems that at random > traffic will come into our PBX but the PBX cannot send anything out. > The odd thing is that I can ping the external interface of the shorewall > machine but I do not get a ping response from the router at our ISP. I > have reverted it back to DNAT until I can get this resolved. > > In proxyarp I have the following setting, where eth0 is the external > interface, eth1 is internal and 202.133.218.26 is the address I have the > PBX configured for: > 202.133.218.26 eth1 eth0 no yes > > In the rules file: > ACCEPT net loc:202.133.218.26 udp 5060 > ACCEPT net loc:202.133.218.26 udp > 10000:20000 > > I am going to try to recreate this with one of our other IP's and a > machine that is not vital to our daily operations so I can get some > packet dumps that may help clarify the source of the problem.
I can't offer any additional advice beyond that. It is essential to understand what is happening 'on the wire'. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
