Linton Norrish
2004-May-31 13:25 UTC
Changed ADSL modem/router to ADSL modem directly connected
Shorewall version 2.0.2b on Debian Unstable I had an adsl modem connected to a router connected to my linux box with shorewall (3 network card setup) installed. This was working ok, however, I have now removed the router and am using the roaring penquin ADSL software provided with debian to connect the modem. As such eth0 was connected to the router. Now eth0 is connected to the modem, however, I seem to have had to change the interface from eth0 to ppp0 in the shorewall interfaces file to get the new setup to work. It works fine except, that I get broadcast denied messages from 10.0.0.1 (eth0). And I cannot work out how to put any rules in for the eth0 (ppp0 runs through the eth0 also) The messages are: May 31 21:02:23 OUTPUT:REJECT:IN= OUT=eth0 SRC=10.0.0.1 DST=10.0.0.255 LEN=136 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=32775 DPT=111 LEN=116 May 31 21:02:39 OUTPUT:REJECT:IN= OUT=eth0 SRC=10.0.0.1 DST=10.0.0.255 LEN=122 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=631 DPT=631 LEN=102 Could someone please let me know what I am missing? I have attached all relevant files.
Tom Eastep
2004-May-31 15:01 UTC
Re: Changed ADSL modem/router to ADSL modem directly connected
Linton Norrish wrote:> Shorewall version 2.0.2b on Debian Unstable > I had an adsl modem connected to a router connected to my linux box > with shorewall (3 network card setup) installed. This was working ok, > however, I have now removed the router and am using the roaring > penquin ADSL software provided with debian to connect the modem. > As such eth0 was connected to the router. Now eth0 is connected to > the modem, however, I seem to have had to change the interface from > eth0 to ppp0 in the shorewall interfaces file to get the new setup to > work. > It works fine except, that I get broadcast denied messages from > 10.0.0.1 (eth0). And I cannot work out how to put any rules in for > the eth0 (ppp0 runs through the eth0 also) > The messages are: > May 31 21:02:23 OUTPUT:REJECT:IN= OUT=eth0 SRC=10.0.0.1 > DST=10.0.0.255 LEN=136 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP > SPT=32775 DPT=111 LEN=116 > May 31 21:02:39 OUTPUT:REJECT:IN= OUT=eth0 SRC=10.0.0.1 > DST=10.0.0.255 LEN=122 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP > SPT=631 DPT=631 LEN=102 > Could someone please let me know what I am missing? > I have attached all relevant files.I would remove the IP address from eth0. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net