Shorewall users - Aug 2004 - Problem With Vlan Routing

Hi,

I have configured shorewall 2.0.3-1 on Redhat 9 on my firewall system which is
also acting as a gateway for one of subnet to another LAN connected via lease
line.

LAN1(192.168.5.0/24)----- FW(shorewall) ------- Internet
                   I------------------------LAN2(192.168.2.0/24)

Below is the routes

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
210.212.86.112  *               255.255.255.248 U     0      0        0 eth2
203.122.35.32   *               255.255.255.240 U     0      0        0 eth1
205.142.21.0    192.168.5.254   255.255.255.0   UG    0      0        0 eth0
192.168.5.0     *               255.255.255.0   U     0      0        0 eth0
192.168.4.0     192.168.5.254   255.255.255.0   UG    0      0        0 eth0
192.168.2.0     192.168.5.254   255.255.255.0   UG    0      0        0 eth0
127.0.0.0       *               255.0.0.0       U     0      0        0 lo

I have got Multiple ISP configuration, and that is working fine, Now the problem
is that when I try to access any host on 192.168.5.0 subnet from 192.168.2.0
subnet the shorewall takes the packet to be entering into the system network
using eth1 interface rather then eth0, and sometimes the link works fine. I am
using a flat network using unmanaged switches. I have also added entry in
shorewalls hosts file  for 192.168.2.0 subnet. Please suggest me why the traffic
is entering into eth1 (network zone) rather then local zone (eth0).

Thanks,
Honey

On Thu, 5 Aug 2004, Honey Bajaj wrote:
> Please suggest me why the traffic is entering into eth1 (network zone)
> rather then local zone (eth0).
I suspect that the answer to your question is at 
http://shorewall.net/troubleshoot.htm in the section entitled "Your 
Network Environment".

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net