Well here i am again.... I have a problem with IPs, see this: --------- | Another | | Place |-----R1-- (......) (a VPN Provider) --R2 ----- GW (Shorewall PC) ------ My Net ---------
Into the "Another Place" has 10.11.0.0/24 ips throw R1 connect to my R2 router (10.11.1.1), but my net has 10.11.0.0/24 address too, so when the GW PC get a packet from the "Another Place" has by example 10.11.0.2 ip, but in the dmesg command say as martian packet, i think that are because the R2 has 10.11.1.1 address and not do NAT. How i can configure shorewall that to respond to request from "Another Place" net that have the same address space that "My Net"??? note that i can change the address of "Another Place". Now i have a rule that if connect to GW 10.11.1.2:3128 then do a DNAT to 10.11.0.20:3128, but when a do a "tcpdump -i eth2" that is the interface with R2 i see the request from 10.11.0.2 to my 10.11.1.2:3128 well, but don't do the routing, i think that it is because the same address space in both place... thanks and rewards --------------------------------------- Al tanto Ing. Luis Felipe Domínguez Vega Administrador de la Red de Desoft Matanzas GNU/Linux Kernel Developer - rtlwifi kernel module "No es grande aquel que nunca falla, es grande el que nunca se da por vencido… " ------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today.http://sdm.link/intel _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
