On 9/14/2013 9:51 AM, HL wrote: > On 14/09/2013 05:18 μμ, Tom Eastep wrote: >> On 09/13/2013 10:17 AM, HL wrote: >>> On 13/09/2013 07:25 μμ, Tom Eastep wrote: >>>> On 09/13/2013 09:21 AM, HL wrote: >>>>> On 13/09/2013 05:52 μμ, Tom Eastep wrote: >>>>>> On 9/13/2013 7:08 AM, HL wrote: >>>>>> >>>>>>> For instance in your case you only need to install zebra with *no* >>>>>>> other >>>>>>> daemon to test it. >>>>>>> >>>>>>> In my case >>>>>>> zebra GETS Blocked. Why? >>>>>> I'll try it over the weekend. After I've installed and started zebra, >>>>>> what must I do to try to reproduce your problem? >>>>>> >>>>>> -Tom >>>>>> >>>>> just place a '-' under column COPY of your providers file >>>>> and under "OPTIONS" track,loose >>>>> >>>>> Restart Shorewall >>>>> >>>>> Then >>>>> from vtysh >>>>> or zebra shell >>>>> conf t >>>>> ip route 8.8.8.8/32 "ip address of a specific provider" >>>>> >>>>> exit vtysh or zebra >>>>> >>>>> ip route >>>>> will not show the route to 8.8.8.8 >>>>> >>>>> vtysh -c "show ip route" >>>>> will list the enty 8.8.8.8 as inactive >>>>> >>>>> Further digging regarding quagga zebra + iproute2 and rt_tables I've >>>>> found this. >>>>> http://lists.quagga.net/pipermail/quagga-users/2008-February/009359.html >>>>> >>>> Let's back up a bit. I've just installed quagga on my Debian gateway. >>>> >>>> If I run vtysh, I get: >>>> >>>> root@gateway:/etc/pam.d# vtysh >>>> Exiting: failed to connect to any daemons. >>>> root@gateway:/etc/pam.d# >>>> >>>> -Tom >>> your have to start zebra first ... ;-) >>> >>> with minimal conf in /etc/quagga/zebra.conf >>> Commets start with ! >>> >>> ------------------------------------------------------------------ >>> hostname Router >>> password zebra >>> enable password zebra >>> ! >>> ! Interface's description. >>> ! >>> !interface lo >>> ! description test of desc. >>> ! >>> !interface sit0 >>> ! multicast >>> >>> ! >>> ! Static default route sample. >>> ! >>> !ip route 0.0.0.0/0 203.181.89.241 >>> ! >> I can't even get this to work when Shorewall is cleared. See attached >> log: >> >> -Tom >> >> > Sorry for the late answer gmail insists on moving shorewall mail into > Important folder or SPAM folder. > > Anyway. > > Correct, same here ! > is something left behind after shorewall is stopped and cleared ??? > > As I mentioned in my mail 2 U this morning > I suspect that the Packet mark stuff --TC_BITS, Provider bits and the > like-- have something to do with the zebra getting blocked-
Which distribution are you running? -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ LIMITED TIME SALE - Full Year of Microsoft Training For Just $49.99! 1,500+ hours of tutorials including VisualStudio 2012, Windows 8, SharePoint 2013, SQL 2012, MVC 4, more. BEST VALUE: New Multi-Library Power Pack includes Mobile, Cloud, Java, and UX Design. Lowest price ever! Ends 9/22/13. http://pubads.g.doubleclick.net/gampad/clk?id=64545871&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
