On Thursday 12 February 2004 11:15 am, Dave King wrote:> Hi-
> I''d been using shorewall to firewall 2 dsl lines on one box
and it
> was working flawlessly. I had both dsl lines coming into it and then
> one line going out to the machines. Recently we decided to firewall
> each line seperatly so we wouldn''t have a single point of failure.
This
> has worked great except that we are unable to get from hosts on line 1
> to servers to ip addresses on line 2 when the server we''re trying
to get
> to is connected to both lines. Doing a tcpdump it looks like the
> windows server brings in the http request via line 2 then sends the
> response back via line 1 since the host is in the subnet. The page
> never actually loads however, which seems to be because the response is
> coming back from a different ip address than the request. To fix this
> I''ve set up a bunch of static routes on the windows servers. Is
there a
> way to fix this with shorewall?
No.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net