Displaying 20 results from an estimated 1000 matches similar to: "problems with shorewall proxyarp"
2011 Aug 23
8
problems configuring shorewall in proxmox pve (debian5)
hello
before asking my question I come
My name is Santiago and I''m from Spain but I''m in Colombia
I followed this guide:
https://www.doas.montanalinux.org/proxmox-ve-with-shorewall.html
but when I run shorewall check, this error occurs:
Checking...
Initializing...
Determining Zones...
IPv4 Zones: net loc
Firewall Zone: fw
Validating interfaces file...
ERROR: Invalid
2005 Feb 11
4
config question for proxyarp hosts?
I''ve got a serious mess of NAT on our firewall/router systems at the
corporate office which seems to do nothing other than confuse the heck
out of people. What I''d like to do is gradually migrate the hosts on
the various DMZ networks away from private IP addresses and NAT over to
public IP addresses and proxyarp.
What I''m wondering, before I start this, is how do I
2013 Sep 30
4
strange problem
Hi,
In log I get:
-----------------------------------------------------------
Sep 30 16:19:03 host kernel: Shorewall:FORWARD:REJECT:IN=eth0 OUT=eth0 SRC=ip1 DST=ip2 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=27279 DF PROTO=TCP SPT=51501 DPT=25 WINDOW=8192 RES=0x00 SYN URGP=0
----------------------------------------------------------
Even in /etc/shorewall/rules I have
2011 Apr 15
1
Proxyarp vs DNAT
Hello list,
I am in the process of switching from IPCOP to Shorewall s the firewall
for our small office. I very much like the fact that Shorewall runs on
top of the same OS (openSuSE 11.4) that I run on the server and my desktop.
Our setup is fairly straightforward. We have 8 static ip addresses from
our ISP, which provides a cable modem and a Cisco 800 series router.
The ip addresses are
2004 Jan 31
5
Shorewall 2.0.0 Alpha 1
http://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
ftp://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2005 Jan 12
2
Samba and ProxyArp
Hi
As per my follow up mail I implemented the ProxyArp configuration as per the
Documentation on the Web site and all seemed to be working correctly.
However, the one thing that doesn''t seem to be working properly is Samba.
I have Samba running on the FW machine and one of the servers 192.168.0.8 on
the Local Lan.
I can connect to a Share using Samba from Server to Server, however
2005 Jun 03
4
New Document for People Helping with Shorewall Support
The Shorewall support page advocates including the output of "shorewall
status" with problem reports that involve some sort of connection
problem. I suspect that the number of people who feel comfortable
analyzing problems through use this output is small.
To help, I''ve created http://shorewall.net/AnalyzingShorewallStatus.html
I suspect that the document isn''t
2012 Apr 19
2
Problems with routing to VPN appliance
Our setup: server running shorewal 4.5.2.2 and watchguard vpn appliance.
VPN appliance was supplied by our document flow provider. I want to route
traffic to 192.168.2.0/24 via 10.10.10.1 gateway.
So I thought it would be a good idea to set it up as another ISP in the
providers file. But when I enable it I can reach 192.168.2.0/24 subnet but
not internet.
Can you please tell what I am doing
2006 Jun 02
2
ProxyArp
Hi-
One last question for the week, I promise.
I''ve got one IP ProxyArp''d according to the instructions at
http://www.shorewall.net/ProxyARP.htm. I''ve setup the
shorewall/proxyarp file as follows:
#ADDRESS INTERFACE EXTERNAL HAVEROUTE
PERSISTENT
208.4.145.73 br0 eth1 no yes
#LAST LINE -- ADD YOUR ENTRIES
2006 Jul 21
4
OpenVZ and virtuel network
Hello All
I installed shorewall 3.0.8 on Centos 4.3 with openvz.org kernel
it work well
i have in this Host 3 virtual servers (VPS)
i can access from a VPS to the internet , and with NAt rule (Via
Shorewall) i can access from Internet to the 3 VPS.
i want that all the 3 VPS can communicate between them.
i can''t do a tcp connection from a VPS to an other , in my shorewall log
in the
2010 Jun 20
2
Proper setup for a router with 2 interfaces and a bridge on one?
I''m working on setting up a new router/server/etc. box.
I''m using Proxmox as the base system (Debian Lenny basically).
I''m trying to figure out the right way to configure Shorewall on it.
I''ve looked at some of the bridging info but they seem to all be
talking about single-interface setups.
Could someone look over my setup and give me some input into the
2011 Aug 02
5
selinux issues
Please see https://bugzilla.redhat.com/show_bug.cgi?id=727648 for more info.
Shorewall executes some bash code like the following:
while read address interface external haveroute; do
qt $IP -4 neigh del proxy $address dev $external
[ -z "${haveroute}${g_noroutes}" ] && qt $IP -4 route del
$address/32 dev $interface
2003 Jan 06
1
SMTP problem
Can someone help me with this problem:
My host on the DMZ is inaccessible from the WAN on port 25. I tried to
telnet but getting:
$ telnet 66.58.99.84 25
Trying 66.58.99.84...
telnet: Unable to connect to remote host: No route to host
My shorewall/proxyarp is:
#address interface external haveroute
66.58.99.82 eth1 eth0 No
66.58.99.84 eth1
2002 Aug 12
4
Proxy ARP and RH 7.2
I have tried unsuccessfully to run both Shorewall 1.2.x, 1.3.x with
Proxy ARP on a Red Hat 7.2 machine.
The machine was configured as the external firewall as per the ''belt and
suspenders'' layout given at http://www.skippy.net/linux/firewall/
The firewall appeared to function correctly in all functions except
proxy ARP, however I must say I did not test exhaustively.
After
2004 Sep 03
18
Public IP
I have problem with IP public, my Network configuration
[wireless] <------> [Router] <------ > [ Linux proxy ] <
------ > [Client ]
IP configuration
[202.123.123.1] <------->[202.123.123.2 and 192.168.0.1] <
------ > [192.168.0.2 and 202.123.123.3] < ------ >
[202.123.123.4]
this configuration will use IP 202.123.123.2 on internet
how to config my network
2004 Oct 28
5
Maximum ProxyArp
Does anyone know what a good maximum number of machines I should place
in the ProxyArp list?
Thanks
Jamie
2004 Nov 22
10
routed vs non routed
In an effert move my Dmz from a snapqear roouter to Linux with shorewall.
Question is I have network 64.42.53.200/29
which makes default gw 64.42.53.201 network 64.42.53.200 broadcast
64.42.53.207
mask 255.255.255.248 and I want to set up shorewall with eth0 64.42.53.202
eth1 local eth2 dmz where dmz will use say 64.42.53.203 for web and email
server.
Where I do not need or should I say use
2003 Oct 19
2
Reg. Proxyarp & DHCP
My ISP has DHCP-assigned IP-addresses.
I wonder if someone has tried using proxyarp
for a DMZ with DHCP-assigned public IP?
2005 Jul 07
1
a long hard road
OK one factor that I had not mentioned previously is this is my first
time running Debian (yes I managed to do that since 1997...). Yesterday
I found /etc/network/interfaces and understood what it does!
My system is like the "About My Network" example except that I have 2
class Cs in the DMZ.
>From what I understand I use the same IP on the NET and DMZ interfaces.
I don''t
2004 Mar 06
16
Bridging Update
The bridging documentation (http://shorewall.net/2.0/bridge.html) has been
expanded and there is a refresh of the bridging code
(ftp://shorewall.net/pub/shorewall/Bridging and
http://shorewall.net/pub/shorewall/Bridging).
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net