hi tom, output of shorewall dump in attachment
stijn On 2/20/20 9:53 PM, Tom Eastep wrote: > On 2/20/20 8:54 AM, Stijn De Weirdt wrote: >> hi all, > > >> i am trying to setup a multiisp setup similar to the basic setup in >> the documentation. > >> however, when sending packets from the local network to the >> internet using snat (or masq), the returning packets never make it >> back to the local network. (tcpdump on external eth1 show per >> outgoing packet one returning with dst the public ip and than one >> translated packet with src the ping target and dest the correct >> local ip; so i guess the snat part worked, but somehow the packet >> is arrived (and nothing is logged)) > >> my current guess is that some interfaces option is missing, but >> i'm clueless. > >> i've simplified the config to using only one interface (so single >> entry in the provider) to produce my problem. > >> i'm running shorewall 5.1.10, i'll paste the simplified configs >> below. > >> any hints how to debug further are welocme > > > For this type of problem, we really need to see the output of > 'shorewall dump' collected as described at > https://shorewall.org/support.htm#Guidelines > > Thanks, > -Tom > > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >
shorewall_dump.txt.gz
Description: application/gzip
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users