Shorewall users - Jan 2005 - All traffic is on the same adress

Hi 

I have a trouble with my shorewall.
I have 5 Ips adresses on my internet interface.
I can ping any of these adresses, but the traffic take always the base adresse 
on my interface.  All the traffic is on the same adress, but I what to know 
the traffric for each of these adresses.  

I search a lot to find the setting for do that, I don''t know what is
wrog in
my config, somebody can help me please.

this is my rules files

#ACTION  SOURCE         DEST            PROTO   DEST    SOURCE     ORIGINAL     
RATE            USER/
#                                               PORT    PORT(S)    DEST         
LIMIT           GROUP
DNAT    net     dmz:10.0.0.3            udp     53      -       64.254.229.226
DNAT    net     dmz:10.0.0.3            tcp     53      -       64.254.229.226
DNAT    net     dmz:10.0.0.4            udp     53      -       64.254.229.227
DNAT    net     dmz:10.0.0.4            tcp     53      -       64.254.229.227
DNAT    net     dmz:10.0.0.3:21         tcp     21      -       64.254.229.226
DNAT    net     dmz:10.0.0.13:21        tcp     21      -       64.254.229.227
DNAT    net     dmz:10.0.0.3:80         tcp     80      -       64.254.229.226
DNAT    net     dmz:10.0.0.13           tcp     80      -       64.254.229.227
DNAT    net     dmz:10.0.0.13           tcp     443     -       64.254.229.227
DNAT    net     dmz:10.0.0.7:80         tcp     80      -       64.254.229.228
DNAT    net     dmz:10.0.0.8:80         tcp     80      -       64.254.229.229
# Acces a Payment manager pour CineClix
DNAT    net     dmz:10.0.0.13           tcp     5433    -       64.254.229.227

# SSH
ACCEPT  dmz     $FW                     tcp     22
ACCEPT  dmz     net                     tcp     22
ACCEPT  $FW     dmz                     tcp     22
ACCEPT  loc     $FW                     tcp     22
ACCEPT  net     $FW:64.254.229.230      tcp     22

# Ping
ACCEPT  loc     $FW     icmp    8
ACCEPT  net     $FW     icmp    8
ACCEPT  dmz     $FW     icmp    8
ACCEPT  dmz     net     icmp    8
ACCEPT  $FW     loc     icmp    8
ACCEPT  $FW     net     icmp    8
ACCEPT  $FW     dmz     icmp    8

# DNS
AllowDNS        dmz:10.0.0.3            net
AllowDNS        dmz:10.0.0.4            net
AllowDNS $FW    dmz


# DMZ Holes
ACCEPT  dmz     loc:192.168.100.8       tcp     25
ACCEPT  dmz     loc:192.168.100.8       udp     25
ACCEPT  dmz     loc:192.168.100.33      tcp     1500

# IPSec
ACCEPT  net:64.254.226.60       $FW     udp     500     500
ACCEPT  net:64.254.226.60       $FW     esp
ACCEPT  net:64.254.226.60       $FW     gre
ACCEPT  net:64.254.226.60       $FW     ah
ACCEPT  $FW     net:64.254.226.60       udp     500     500
ACCEPT  $FW     net:64.254.226.60       esp
ACCEPT  $FW     net:64.254.226.60       gre
ACCEPT  $FW     net:64.254.226.60       ah
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE

patrick.leduc@novipro.com wrote:
> Hi 
> 
> I have a trouble with my shorewall.
> I have 5 Ips adresses on my internet interface.
> I can ping any of these adresses, but the traffic take always the base
adresse
> on my interface.  All the traffic is on the same adress, but I what to know
> the traffric for each of these adresses.  
> 
I''m sorry -- I don''t understand what problem you are
reporting. What do
you mean "All the traffic is on the same address"???

Do you mean "All outgoing masqueraded traffic uses the same source
address"?

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

hi 
sorry, My english is limited. 
My internet interface have 5 ip adresses.  Example 64.254.229.227 go on a 
web server ( in my local network)... The connection is etablised but after 
I think that the traffic take adress 64.254.229.230 (base adress of my 
card). 
Incoming and outgoing are same... Traffic take 64.254.229.230 for incoming 
and outgoing

If you don''t understand I''ll ask to my friend to help my wit
these
message. 
sorry






Tom Eastep <teastep@shorewall.net> 
Sent by: shorewall-users-bounces@lists.shorewall.net
2005-01-11 16:00
Please respond to
Mailing List for Shorewall Users <shorewall-users@lists.shorewall.net>


To
Mailing List for Shorewall Users <shorewall-users@lists.shorewall.net>
cc

Subject
Re: [Shorewall-users] All traffic is on the same adress






patrick.leduc@novipro.com wrote:
> Hi 
> 
> I have a trouble with my shorewall.
> I have 5 Ips adresses on my internet interface.
> I can ping any of these adresses, but the traffic take always the base 
adresse 
> on my interface.  All the traffic is on the same adress, but I what to 
know 
> the traffric for each of these adresses. 
> 
I''m sorry -- I don''t understand what problem you are
reporting. What do
you mean "All the traffic is on the same address"???

Do you mean "All outgoing masqueraded traffic uses the same source
address"?

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key
_______________________________________________
Shorewall-users mailing list
Post: Shorewall-users@lists.shorewall.net
Subscribe/Unsubscribe: 
https://lists.shorewall.net/mailman/listinfo/shorewall-users
Support: http://www.shorewall.net/support.htm
FAQ: http://www.shorewall.net/FAQ.htm