I thought more info might help
Maybe its broadcasting on the lan fine. When I can figure out how to check
that??
And Zebra is trying to broadcast to the net which I am thinking is not
needed.
May 20 23:49:21 ns1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MACSRC=64.42.53.202 DST=64.42.53.207 LEN=92 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF
PROTO=UDP SPT=520 DPT=520 LEN=72
[root@ns1 zebra-0.94]#
I need ripd and zebra so packets coming from 172.30.0.15 iseries Big
Blue
going through the ipsec tunnel can talk to 10.19.227.193. I have recently
found
out that General Motors uses RIP1 to give routes for this kind of purpose.
I have added the route statically for the Lan clients to talk to
10.19.227.193
with 10.0.0.0/8. Also the ipsec folks need access to 10.19.227.193
The internal for shorewall is 10.19.227.20 (eth1)
Thank you
Mike
Destination Gateway Genmask Flags MSS Window irtt
Iface
64.42.53.200 * 255.255.255.248 U 0 0 0
eth0
64.42.53.200 * 255.255.255.248 U 0 0 0
ipsec0
10.19.227.0 * 255.255.255.0 U 0 0 0
eth1
172.30.0.0 64-42-53-201.at 255.255.0.0 UG 0 0 0
ipsec0
10.0.0.0 10.19.227.193 255.0.0.0 UG 0 0 0
eth1
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 64-42-53-201.at 0.0.0.0 UG 0 0 0
eth0
[root@ns1 zebra-0.94]#