Florian Zschocke wrote:> A Linux server Mandrake 9,2 I setup several years ago is not routing > correct anymore. > It stopped working without any user interaction updates or else. > The machine is not standing in the same city and can only reach it > remote (vnc/webmin) > The version of shorewall is 1.4.2.According to the version.txt file you sent, the version is 1.4.8.> The machine has two ethernet interfaces and dials up via ppp(oe). > The local net is masqueraded (NAT). > It has squid proxy installed which is still working fine on port 3128. > I red your description how to ask for help and attached > the text-files with the output of dump, e.c.t. > I promise that I will change this server to a newer system next time i > can get there (600 km from here) > but in between I would be glad to get it fixed. > My biggest problem is that I don''t really understand the correlation > between shorewall/iptables > and routing. From my simple point of view is the dynamic routing over > ppp0 not working. > I hope you give me a hint.Unfortunately, Shorewall versions as old as yours didn''t support the ''dump'' command. You clearly didn''t look at the output since there''s nothing there but a syntax summary. If Squid is still working, then check the setting of IP_FORWARDING in shorewall.conf. It should be set to ''On'' -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
Hello All, I need a VPN package something like OpenVPN that has a VPN client that works on Windows XP So, i can integrate VPN to Shorewall firewall You replies are highly appreciated P.S. Sorry if this question is not relevant, but I need the VPN that works with Shorewall Kind Regards Samer _________________________________________________________________ Windows Live Hotmail and Microsoft Office Outlook – together at last. Get it now. http://office.microsoft.com/en-us/outlook/HA102225181033.aspx?pid=CL100626971033 ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
Samer Y. Azmy wrote:> Hello All, > > I need a VPN package something like OpenVPN that has a VPN client that > works on Windows XP > So, i can integrate VPN to Shorewall firewall > > You replies are highly appreciated > > P.S. Sorry if this question is not relevant, but I need the VPN that > works with ShorewallOpenVPN works fine on Windows XP. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
Florian Zschocke wrote:> Thank you for your fast response > Sorry for sending you empty files. > In /etc/shorewall/shorewall.conf i have only two lines: > > MACLIST_DISPOSITION=REJECT > TCP_FLAGS_DISPOSITION=DROP > > are these correct? > And I add a line > IP_FORWARDING=ON >Did that solve the problem (after "shorewall restart")? -Tom PS -- support@shorewall.net is not for private 1-on-1 help. It is for sending large files that can''t be sent to the mailing list. Please keep this discussion on the mailing list. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
Hi, I would like to understand the "multi-isp" abilities of Shorewall. I noticed that some posts regarding multiple ISP''s talk about a proxy server - is this a typical http proxy web server, or is this a different meaning of the term "proxy"? Is an http proxy server really necessary for this to work, or can shorewall just load balance: "if load on circuit A reaches threshold X open all new connections on Circuit B"? The scenario is: We have a 3 megabit dual T1 as our main internet connection. We also have a 3megabit DSL line that was just installed in case our T1 goes down for some reason (not yet connected to our network). It would be nice to have that extra bandwidth available to the LAN for downloads of large files, or days when internet usage peaks (so far, we really haven''t had any, but our network is growing) Thanks, Joel ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
Dear Mr. Tom , I''m grateful for your fast reply ,your indepth knowledge and for Shorewall Thank you very much My sincere Compliments Samer Azmy ----- Original Message ----- From: "Tom Eastep" <teastep@shorewall.net> To: "Shorewall Users" <shorewall-users@lists.sourceforge.net> Sent: Thursday, October 18, 2007 5:38 PM Subject: Re: [Shorewall-users] VPN> ------------------------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/--------------------------------------------------------------------------------> _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/