I,m trying to allow traffic from two networks on the same network, but I get this freaky thing in my logs : kernel: Shorewall:FORWARD:REJECT:IN=eth0 OUT=eth0 any ideas Frantzcy -- Unreachability is bliss
On Wednesday 11 September 2002 01:02 pm, Frantzcy Paisible wrote:> I,m trying to allow traffic from two networks on the same network, but I > get this freaky thing in my logs : > > kernel: Shorewall:FORWARD:REJECT:IN=eth0 OUT=eth0 >eth0 not defined in /etc/shorewall/interfaces? eth0 not in any zone? ''multi'' option not specified for eth0? -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
Well, the only thing missing was the multi. Addid it, ping works, but from Zone1Host1 telnet Zone2Host2 3306 falls into the all2all table and gets rejected... The rule says: ACCEPT zone1:Host1IP zone2:Host2IP tcp 3306 Am I missing something again ? Frantzcy On Wed, 11 Sep 2002 15:04:34 -0700,Tom Eastep <teastep@shorewall.net> wrote:> On Wednesday 11 September 2002 01:02 pm, Frantzcy Paisible wrote: > > I,m trying to allow traffic from two networks on the same network, but I > > get this freaky thing in my logs : > > > > kernel: Shorewall:FORWARD:REJECT:IN=eth0 OUT=eth0 > > > > eth0 not defined in /etc/shorewall/interfaces? > eth0 not in any zone? > ''multi'' option not specified for eth0? > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > AIM: tmeastep \ http://www.shorewall.net > ICQ: #60745924 \ teastep@shorewall.net-- Unreachability is bliss
On Thursday 12 September 2002 08:05 am, Frantzcy Paisible wrote:> Well, the only thing missing was the multi. > > Addid it, ping works, > but from Zone1Host1 > > telnet Zone2Host2 3306 > > falls into the all2all table and gets rejected... > The rule says: > > ACCEPT zone1:Host1IP zone2:Host2IP tcp 3306 > > Am I missing something again ?No -- that should work.... -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net