Hi, I'm not experiencing a communication issue but I'm not sure I understand how "traceroute" works.
I don't know if the shorewall dump I'm attaching can be of any use but here
goes.
A host in the "ibs" zone with IP addr. 10.215.237.228 performs a traceroute to
a host in the "lan" zone with IP addr. 10.215.145.231.
The trace is as follows:
1 10.215.237.1
2 172.20.1.7
3 172.20.30.1
4 10.128.4.252
5 172.20.11.62
6 10.215.145.231
The trace and pings work just fine.
However, the IP addr. at pos 5 is assigned to the NIC facing the "caib" zone on
the shorewall firewall. I would be expecting to see "172.28.17.105" instead of
"172.20.11.62".
NIC enp2s0f1 IP addr. is 172.28.17.105 ("ibs" zone)
NIC enp2s0f0 IP addr. is 172.20.11.62 ("caib" zone)
If I sniff with tcpdump on both NICs while "ibs" host performs pings then I see
traffic to/from NIC enp2s0f1, as expected. Nothing on NIC enp2s0f0.
So, if all's working fine then why isn't the "ibs" host seeing something like
this instead?:
1 10.215.237.1
2 172.20.1.7
3 172.20.30.1
4 10.128.4.252
5 172.28.17.105
6 10.215.145.231
Thanks in advance,
Vieri
hsll.dump.from_10.215.237.228_to_10.215.145.231.gz
Description: application/gzip
------------------------------------------------------------------------------ Go from Idea to Many App Stores Faster with Intel(R) XDK Give your users amazing mobile app experiences with Intel(R) XDK. Use one codebase in this all-in-one HTML5 development environment. Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs. http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
