On 07/31/2012 02:12 AM, Alias wrote: > I am experiencing the weirdest symptom which is: I can only browse very > few sites (www.google.com;www.telstra.com;www.bigpond.com) once > shorewall is started as I receive "request time-outs" for the rest. . > Another symptom is FTPing a site presents the lists but fails to > download. > > Environment: > + opensuse 12.1 (x86) > + 1Gb Ram & 2vCPU > + ifconfig: > - dsl0 (Net) > - eth0 > - eth1 (Lan) > + pppoe > + Netcomm NB5 adsl2+ router (bridge mode) > > Zones > lan ipv4 # > net ipv4 # > fw firewall > > Interfaces > lan eth1 > net dsl0 - dhcp > > Policy > all all ACCEPT > > Masq > dsl0 eth1
> > Process of elimination indicates shorewall is the issue as all is OK > when I use SuseFirewall or another Windows7 pppoe device. > I have tried various combinations of the above configs with same > results. Pinging the sites resolve IP and replies.. > I know my policy is not a good practice however this has push me over > the edge. > > I notice there's a few more Interface options since I last played with > this so I'm not sure if im missing something. > > Any ideas ? Try setting CLAMPMSS=Yes in shorewall.conf. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
