On 6/20/10 6:45 AM, Mark D. Montgomery II wrote:
> I'm working on setting up a new router/server/etc. box.
> I'm using Proxmox as the base system (Debian Lenny basically).
> I'm trying to figure out the right way to configure Shorewall on it.
> I've looked at some of the bridging info but they seem to all be talking
> about single-interface setups.
> Could someone look over my setup and give me some input into the proper
> way to set this up so that I can do all the normal Shorewall things
> properly like blocking like normal, port forwards, etc. ?
> I think my current setup mostly works, but I'm seeing messages like:
> Shorewall:FORWARD:REJECT:IN=vmbr0 OUT=vmbr0 PHYSIN=vmtab101i0
> PHYSOUT=vmtab102i0 SRC=10.10.42.3 DST=10.10.42.2 LEN=60 TOS=0x00
> PREC=0x00 TTL=64 ID=61722 DF PROTO=TCP SPT=47118 DPT=3260 WINDOW=5840
> RES=0x00 SYN URGP=0
Shorewall FAQs 17 and 35.
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car