I am running Debian 6.0.4 and shoreall 4.5.0.1. I have 12MB of internet in and out. When running shorewall with just a vanialla masq configuration, I am getting downloads of 2.3Mb and uploads of 8 when i do a shorewall clear and run just a simple iptables masq I am getting 11.2 / 11.4. I do not have an TC files enabled, and only using interfaces,zones,policy, and masq. This isn''t my first rodeo, but this has me stumped. Looking for any suggestions. zones: root@firewall:/etc/shorewall# cat zones # /etc/shorewall/zones \############################################################################### #ZONE TYPE OPTIONS IN OUT # OPTIONS OPTIONS fw firewall loc ipv4 net ipv4 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE # # /etc/shorewall/masq ############################################################################### #INTERFACE SUBNET ADDRESS PROTO PORT(S) IPSEC eth0 192.168.30.0/24 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE # /etc/shorewall/interfaces # ############################################################################### #ZONE INTERFACE BROADCAST OPTIONS loc eth1 detect net eth0 - blacklist #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE # # /etc/shorewall/policy ############################################################################### #SOURCE DEST POLICY LOG LIMIT:BURST # LEVEL all all ACCEPT #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE ------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
On 02/28/2012 10:35 AM, Red Baron wrote:> I am running Debian 6.0.4 and shoreall 4.5.0.1. I have 12MB of internet > in and out. > > When running shorewall with just a vanialla masq configuration, I am > getting downloads of 2.3Mb and uploads of 8 > > when i do a shorewall clear and run just a simple iptables masq I am > getting 11.2 / 11.4. > > I do not have an TC files enabled, and only using > interfaces,zones,policy, and masq. > > This isn''t my first rodeo, but this has me stumped. > > Looking for any suggestions. >This type of issue can''t be solved just by looking at the config files; need the output of ''shorewall dump'' as an attachment. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d