On 07/12/2012 08:09 AM, Nathan Kennedy wrote:> Greetings,
>
> I have been running in a ProxyARP configuration for our Asterisk PBX for
> over a year now without a hitch and recently it seems that at random
> traffic will come into our PBX but the PBX cannot send anything out.
> The odd thing is that I can ping the external interface of the shorewall
> machine but I do not get a ping response from the router at our ISP. I
> have reverted it back to DNAT until I can get this resolved.
>
> In proxyarp I have the following setting, where eth0 is the external
> interface, eth1 is internal and 202.133.218.26 is the address I have the
> PBX configured for:
> 202.133.218.26 eth1 eth0 no yes
>
> In the rules file:
> ACCEPT net loc:202.133.218.26 udp 5060
> ACCEPT net loc:202.133.218.26 udp
> 10000:20000
>
> I am going to try to recreate this with one of our other IP''s and
a
> machine that is not vital to our daily operations so I can get some
> packet dumps that may help clarify the source of the problem.
I can''t offer any additional advice beyond that. It is essential to
understand what is happening ''on the wire''.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
shorewall.net \________________________________________________
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. accelacomm.com/jaw/sfrnl04242012/114/50122263