Shorewall users - Jul 2005 - setting gateway in interfaces file

I tried to the new GATEWAY option in
/etc/shorewal/interfaces file but it didnt work. My
network setting consists of 2 ISPs line and i would
like to have eth0 to connect to for example,
192.168.15.254 while eth1 connected to 192.168.33.254.
I restarted shorewall and nothing is wrong. However,
the traffic still goes to the default gateway as shown
in "route -n" command. For example, i would like to
redirect port 5050 to eth1 but it goes back to the ip
address of the default gw. What i dont understand is
the note given on the interfaces file. It reads :-

---
This column is only meaningful if the ''default'' OPTION
is given -- it is ignored otherwise. You may specify 
the default gateway IP address for this interface here
and Shorewall will use that IP address rather than any
that it finds in the main routing table.
---


Am i doing wrong here? Or something is wrong with
Mandrake? 

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

2005/7/4, Diamond King <mercyful_fated@yahoo.com>:
> I tried to the new GATEWAY option in
> /etc/shorewal/interfaces file but it didnt work.
did you mean /etc/shorewall/providers ??
> ---
> 
> Am i doing wrong here? Or something is wrong with
> Mandrake?
> 
We actually don''t know.

please submit a proper problem report.

http://www.shorewall.net/support.htm#Guidelines


-- 
Cristian Rodriguez.
"for DVDs in Linux screw the MPAA and ; do dig $DVDs.z.zoy.org ; done | \
  perl -ne ''s/\.//g; print pack("H224",$1)
if(/^x([^z]*)/)'' | gunzip"

2005/7/4, Diamond King <mercyful_fated@yahoo.com>:
> I tried to the new GATEWAY option in
> /etc/shorewal/interfaces file but it didnt work.
did you mean /etc/shorewall/providers ??

No, I don''t think he does, for a time, (around 2.3.2ish) the interface
file was used to define the providers. The providers file came out later,
replacing the functionality of that column, but the interface file (2.4.0)
still has these comments:

---quote---
# GATEWAY  This column is only meaningful if the ''default''
OPTION
#   is given -- it is ignored otherwise. You may specify
#   the default gateway IP address for this interface here
#   and Shorewall will use that IP address rather than any
#   that it finds in the main routing table.
<snip>
###########################################################################
###
#ZONE  INTERFACE BROADCAST OPTIONS   GATEWAY
#
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
-----end------

Think that this can be a bit misleading.

Jerry

Yeah..jerry was right. So, i think i should ignore
this  option then. Im trying to understand the
provider file. Anyway, if i set up 2 ISP, how should
do with the masq file? Should i include it with the
same setting. For example, if i want eth2 to be masqed
to eth0 and eth3 masqed to eth1, does it supposed to
be like this? :-

eth0 eth2
eth1 eth3


Regards,

Chee Chun 
 


--- Jerry Vonau <jvonau@shaw.ca> wrote:
> 
> 
> 
> 2005/7/4, Diamond King <mercyful_fated@yahoo.com>:
> > I tried to the new GATEWAY option in
> > /etc/shorewal/interfaces file but it didnt work.
> 
> did you mean /etc/shorewall/providers ??
> 
> No, I don''t think he does, for a time, (around
> 2.3.2ish) the interface
> file was used to define the providers. The providers
> file came out later,
> replacing the functionality of that column, but the
> interface file (2.4.0)
> still has these comments:
> 
> ---quote---
> # GATEWAY  This column is only meaningful if the
> ''default'' OPTION
> #   is given -- it is ignored otherwise. You may
> specify
> #   the default gateway IP address for this
> interface here
> #   and Shorewall will use that IP address rather
> than any
> #   that it finds in the main routing table.
> <snip>
>
###########################################################################
> ###
> #ZONE  INTERFACE BROADCAST OPTIONS   GATEWAY
> #
> #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO
> NOT REMOVE
> -----end------
> 
> Think that this can be a bit misleading.
> 
> Jerry
> 
> 
> 
> 
> 
> 
> 
> _______________________________________________
> Shorewall-users mailing list
> Post: Shorewall-users@lists.shorewall.net
> Subscribe/Unsubscribe:
>
https://lists.shorewall.net/mailman/listinfo/shorewall-users
> Support: http://www.shorewall.net/support.htm
> FAQ: http://www.shorewall.net/FAQ.htm
> 

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Great..Mandriva 10.2 did not have --mark option
enabled 
 in their kernel. Looks like i have to recompile the
kernel... :(
--- Diamond King <mercyful_fated@yahoo.com> wrote:
> Yeah..jerry was right. So, i think i should ignore
> this  option then. Im trying to understand the
> provider file. Anyway, if i set up 2 ISP, how should
> do with the masq file? Should i include it with the
> same setting. For example, if i want eth2 to be
> masqed
> to eth0 and eth3 masqed to eth1, does it supposed to
> be like this? :-
> 
> eth0 eth2
> eth1 eth3
> 
> 
> Regards,
> 
> Chee Chun 
>  
> 
> 
> --- Jerry Vonau <jvonau@shaw.ca> wrote:
> 
> > 
> > 
> > 
> > 2005/7/4, Diamond King <mercyful_fated@yahoo.com>:
> > > I tried to the new GATEWAY option in
> > > /etc/shorewal/interfaces file but it didnt work.
> > 
> > did you mean /etc/shorewall/providers ??
> > 
> > No, I don''t think he does, for a time, (around
> > 2.3.2ish) the interface
> > file was used to define the providers. The
> providers
> > file came out later,
> > replacing the functionality of that column, but
> the
> > interface file (2.4.0)
> > still has these comments:
> > 
> > ---quote---
> > # GATEWAY  This column is only meaningful if the
> > ''default'' OPTION
> > #   is given -- it is ignored otherwise. You may
> > specify
> > #   the default gateway IP address for this
> > interface here
> > #   and Shorewall will use that IP address rather
> > than any
> > #   that it finds in the main routing table.
> > <snip>
> >
>
###########################################################################
> > ###
> > #ZONE  INTERFACE BROADCAST OPTIONS   GATEWAY
> > #
> > #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE --
> DO
> > NOT REMOVE
> > -----end------
> > 
> > Think that this can be a bit misleading.
> > 
> > Jerry
> > 
> > 
> > 
> > 
> > 
> > 
> > 
> > _______________________________________________
> > Shorewall-users mailing list
> > Post: Shorewall-users@lists.shorewall.net
> > Subscribe/Unsubscribe:
> >
>
https://lists.shorewall.net/mailman/listinfo/shorewall-users
> > Support: http://www.shorewall.net/support.htm
> > FAQ: http://www.shorewall.net/FAQ.htm
> > 
> 
> 
> __________________________________________________
> Do You Yahoo!?
> Tired of spam?  Yahoo! Mail has the best spam
> protection around 
> http://mail.yahoo.com 
> _______________________________________________
> Shorewall-users mailing list
> Post: Shorewall-users@lists.shorewall.net
> Subscribe/Unsubscribe:
>
https://lists.shorewall.net/mailman/listinfo/shorewall-users
> Support: http://www.shorewall.net/support.htm
> FAQ: http://www.shorewall.net/FAQ.htm
> 


		
__________________________________ 
Discover Yahoo! 
Stay in touch with email, IM, photo sharing and more. Check it out! 
http://discover.yahoo.com/stayintouch.html