Hi all, I''m using shorewall for about 1 year on debian squeeze without any problem. This Weekend, I updated squeeze to wheezy and now, there is a strange problem. As you can see in the attachment, there is a policy "int int ACCEPT", so I''m allowing all IPs 192.178.2.0/24 to connect to each other. Unfortunately, the shorewall firewall doesn''t allow it and doesn''t even find a matching rule (so it rejects the forward at the very last "Forward" Line). It seems that shorewall completely ignores the int to int Rule. Does anybody know, what''s wrong in my configuration? Thank you for your help. - Philipp ------------------------------------------------------------------------------ Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk
Hi all, I''m using shorewall for about 1 year on debian squeeze without any problem. This Weekend, I updated squeeze to wheezy and now, there is a strange problem. As you can see in the attachment, there is a policy "int int ACCEPT", so I''m allowing all IPs 192.178.2.0/24 to connect to each other. Unfortunately, the shorewall firewall doesn''t allow it and doesn''t even find a matching rule (so it rejects the forward at the very last "Forward" Line). It seems that shorewall completely ignores the int to int Rule. Does anybody know, what''s wrong in my configuration? Thank you for your help. - Philipp ------------------------------------------------------------------------------ Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk
Computers on the same subnet won''t even get routed through the firewall when contacting each other. ------------------------------------------------------------------------------ Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk
Assuming your network setup is correct members of 192.178.2.0/24 will communicate to each other without going through a gateway or the firewall. Int int Accept Doesnt make sense because shorewall isnt between each int connection and if it was then theyd be different zones. Int1 int2 Accept On Sep 8, 2013 1:12 PM, "Philipp Holzer" <philipp@dieholzers.at> wrote:> Hi all,**** > > ** ** > > I’m using shorewall for about 1 year on debian squeeze without any > problem. This Weekend, I updated squeeze to wheezy and now, there is a > strange problem. As you can see in the attachment, there is a policy “int > int ACCEPT”, so I’m allowing all IPs 192.178.2.0/24 to connect to each > other. Unfortunately, the shorewall firewall doesn’t allow it and doesn’t > even find a matching rule (so it rejects the forward at the very last > “Forward” Line).**** > > ** ** > > It seems that shorewall completely ignores the int to int Rule.**** > > ** ** > > Does anybody know, what’s wrong in my configuration?**** > > ** ** > > Thank you for your help.**** > > ** ** > > - Philipp**** > > > ------------------------------------------------------------------------------ > Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! > Discover the easy way to master current and previous Microsoft technologies > and advance your career. Get an incredible 1,500+ hours of step-by-step > tutorial videos with LearnDevNow. Subscribe today and save! > http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > >------------------------------------------------------------------------------ Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk