search for: kbeewal

...with shorewall 1.4.8-1 running on redhat 9. My eth2 (dmz zone)has 7 secondary address attached to it. I can ping a machine in each subnet, dmz to net rules seem to be working fine on all machines.. I have my policy set as dmz to dmz accept. If I try to ping between subnets I get Nov 21 12:18:45 kbeewall kernel: Shorewall:FORWARD:REJECT:IN=eth2 OUT=eth2 SRC=172.17.0.2 DST=172.16.0.130 LEN=60 TOS=0x00 PREC=0x00 TTL=127 ID=36553 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=7168 In http://lists.shorewall.net/pipermail/shorewall-users/2003-September/008978.h tml It says to add routeback as an option in int...