similar to: Allowing OSPF

Hello, Please tell me if it's possible to use tinc together with OSPF (instead of static routes in LAN). By OSPF I mean Quagga's GNU/Linux daemon. Namely, I have a group of LANs (private 192.168.x.0/24 each). Each LAN has a GNU/Linux default gateway, 192.168.x.1, that also connects to the Internet via a public IP address (does NAT and firewall for the LAN "behind" it). tinc

Hi, The network topo looks like this: the original network: router1 router2 | | |----------------OSPF------------| the target network: (we need to insert a transparent firewall between these 2 routers, so a proxy arp is set up on firewall to bridge router1 and router2) router1 firewall router2 |

Hi Everyone, I have a routing situation where Tinc looks like it could come in extremely useful, but I have a query I hope someone can cast an eye on, as I'm unsure whether Tinc can help me here. I currently have a Quagga OSPF linux router which connects LAN A to LAN B over the quickest available of two routes (both routes at both ends connect to Quagga boxes to prevent collisions). One of

Would someone please explain to me the difference in effect between the following two IPTABLES conditions and the significance thereof in concurrent connection limiting? --tcp-flags SYN,ACK,FIN,RST SYN -j REJECT \ --connlimit-above 3 --connlimit-mask 32 --state NEW -j REJECT \ --connlimit-above 3 --connlimit-mask 32 -- *** e-Mail is NOT a SECURE channel *** Do

I am trying to set up my Shorewall box to forward multicast packets to my local net. I do have some problems with mrouted (see below), but I can join and add routes using smcroute. Multicast works when shorewall is disabled. I got a lot of help from the following. http://lists.shorewall.net/pipermail/shorewall-users/2005-January/016674.html I cannot get the multicast packets to pass the fw when

Hi! Shorewall Users May I know ..what does it means ? Nov 5 12:43:34 netgw kernel: Shorewall:newnotsyn:DROP:IN=eth0 OUT= MAC=00:05:5d:4e:fc:62:00:d0:95:7a:d5:f1:08:00 SRC=210.59.230.239 DST=211.24.146.50 LEN=52 TOS=0x00 PREC=0x00 TTL=48 ID=36787 PROTO=TCP SPT=80 DPT=20291 WINDOW=65160 RES=0x00 ACK FIN URGP=0 Best Regards, Support

I have a fairly simply laid out network that could easily use static routing. However, I plan to expand quickly and don''t wish to spend the better part of my life maintaining static routes. INTERNET | --------- Gateway | - LAN 172.16.1.x | - LINK 192.168.1.1 --------- |<----wifi --------- router 2 | -LAN 172.16.2.x | -Link 192.168.1.2 ---------

Hi List, FYI. We have been using CentOS 6.4 and have 2 vpn/gre tunnels to separate cisco rtrs using ospf. with kernel 2.6.32-358.23.2 We have upgraded to 6.5 bit using kernel 2.6.32-431.5.1 and the exact same configuration scripts for our vpn/gre tunnels. What I see is the first gre tunnel works great and I get an ospf neighbor. The second tunnel comes up and I can ping across it and I see

I''ve got a linux router pushing 600-1000 pppoe connections through it. I''m getting a screen error "Neighbor Table Overflow" after this box has been up for between 1 week and 1 month. When this is happening, routing slows to a crawl if at all. Then dies. I''ve added: # Added to stop "neighbor table overflow" messages in the kernel

Hi When I start shorewall, the multicast stream is stopped. My config: Windows VLC Client-----eth0:192.168.254.1/24--fw---eth1:191.168.254.254/16-------------------------Linux VLC Streaming server 192.168.254/24 lan wan (but it''s really a internal lan !) 191.168.1.21/16 on the FW/shorewall route add -net 224.0.0.0 netmask

Hi, all! Can I enable multicasting via shorewall? I have router with Gentoo Linux (one interface to ISP, one with alises - to local network). Shorewall work perfect! But now I need setup Quagga (zebra) for dynamic routing between one more router via another provider. All routers daemons (zebra, ripd, ospf) used multicasting. In my configuration already enabled allowBcast and etc.

After installing Zebra for ripd to get win2k routes I am getting this May 20 23:24:20 ns1 kernel: Shorewall:net2all:DROP:IN=eth0 OUT= MAC= SRC=64.42.53.202 DST=64.42.53.207 LEN=92 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=520 DPT=520 LEN=72 May 20 23:25:25 ns1 last message repeated 3 times I am new to zebra, so I am assuming that this is broadcasting to windoz for routes weird !!!

The same client was used for syslinux.efi (both success on same subnet and failure on different subnet) and grub.efi. The DHCP host block is setup like: host testing { hardware ethernet {mac} ; next-server 10.16.195.178 ; filename "rhel64/syslinux.efi" ; } I'll pull a tcpdump filtering by the IP tomorrow when I get back to the systems. On Mon, Nov 4, 2013 at 6:41 PM,

I''m getting 2 or three of these a day...Any ideas ? The 192.168.250.zz is a eth0:3 on a box that currently only has eth0:1 active Dec 1 15:47:40 machine-name kernel: Shorewall:all2all:REJECT:IN= OUT=eth0 SRC=my.real.ip.addr DST=66.228.216.22 LEN=68 TOS=0x00 PREC=0xC0 TTL=255 ID=12031 PROTO=ICMP TYPE=3 CODE=1 [SRC=66.228.216.22 DST=192.168.250.zz LEN=40 TOS=0x00 PREC=0x00 TTL=46

Hi all, I am currently trying to emulate a satellite link, via Netem, on a testbed which is OSPF-enabled. I''d like to set up a Netem box between two routers. Since all routing between routers is dynamic, I''m wondering how to set up OSPF on my Netem box? Could someone indicate me if it is feasible and give me some guidelines to possibly do so? Thanks in advance, Vincent.

Hello, I''ve "emerged" Shorewall 2.0.7 onto my Gentoo pc. Going through the 2 interface quickstart guide I download the 2.0.1 interface sample and untar it. "tar -zxvf two-interfaces.tgz" Maybe a dumb question but I can''t find anything on Google or the Shorewall mail archives that say anything about this. So I''m assuming its me. :P But the

I am setting up 2 Vyatta routers that will serve as redundant failover core routers out to the backbone of our ISP. They will be serving for routing between other branches and the ISP and bandwidth management. I am trying to differentiate between the plethora of information about having redundant, automatic failover routers and pretty much decided on VRRP for the IP address failover mechanism. I

Hello Tom and others, At first I want to say THANK YOU, for neverending support and development Shorewall firewall. I just upgraded from 1.x version to 2.0.7. I have several networks defined on same interface. These are /30 networks, defined on ethernet interface where hw wifi access point is connected to. I used this configuration to be able to get accounting information about traffic between

I need to send multicast traffic through a GRE tunnel between two Linux routers. The tunnel works for normal IP packets, but I can''t see how to make it work for multicast. Here''s the setup: 10.10.10.0/24 LAN-B--------------RtrB-------------RtrC--------------LAN-C 192.168.2.0/24 192.168.1.0/24 RtrB interfaces: eth0

Let''s move this to the Shorewall Development list.... On Tuesday 10 February 2004 03:14 pm, xavier wrote: > here is a patch to allow this : > |ACCEPT<10/sec:20>:debug fw lan:$ntp_servers udp 123 - - - - ntp > > a problem with the patch is that now the logprefix is mandatory. > i''m trying to debug it, but i can''t find the flaw. Also, with