Holger Latz wrote:> I have a working LVS-Setup on CentOS 5.4 with the following settings
> in sysctl.conf:
>
> net.ipv4.conf.lo.arp_ignore = 1
> net.ipv4.conf.lo.arp_announce = 2
> net.ipv4.conf.all.arp_ignore = 1
> net.ipv4.conf.all.arp_announce = 2
>
> Now I''d like to use shorewall, but after activating it, shorewall
> changes both arp_ignore values to 0. I just found out how to set
> arp_ignore for separate interfaces, but not for the loopback-device.
>
> How can I prevent shorewall to overwrite my settings or how can I set
> them within the shorewall context?
To set arp_ignore on the loopback device:
/etc/shorewall/interfaces:
- lo - arp_ignore=1
-Tom
PS -- what possible reason is there for setting arp_ignore on the
loopback device?
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com