At 9/7/2014 10:45 PM, grant wrote:
>good day all
>
>i have shorewall-4.6.3.2 running on centos 2.6.32-431.23.3.el6.x86_64. i
>have 2 ethernet interfaces, eth0 and eth1. eth0 is lan 192.168.65.0/24
>and eth1 is only used for a pppoe adsl account with dynamic ip address
>from isp.
Not sure this is relevant but check your masq file. As I have mentioned before
with pppoe; pppoe typically uses an intermediate ip address for the link, mine
is in the 10.0.0.0/8 range:
$ ip a
...
4: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1492 qdisc pfifo_fast
state UNKNOWN group default qlen 3
link/ppp
inet 173.x.x.x peer 10.9.44.114/32 scope global ppp0
valid_lft forever preferred_lft forever
If you have 10.0.0.0 specified in your masq file (or whatever you pppoe link
is) it will cause problems, typically masq specifies:
169.254.0.0/16,172.16.0.0/12,192.168.0.0/16,10.0.0.0/8 so the 10.0.0.0/8 would
need to be removed.
Wayne S
------------------------------------------------------------------------------
Want excitement?
Manually upgrade your production database.
When you want reliability, choose Perforce.
Perforce version control. Predictably reliable.
http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
