[Shorewall-users] arp_ignore for lo-device

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

I have a working LVS-Setup on CentOS 5.4 with the following settings
in sysctl.conf:

net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2

Now I'd like to use shorewall, but after activating it, shorewall
changes both arp_ignore values to 0. I just found out how to set
arp_ignore for separate interfaces, but not for the loopback-device.

How can I prevent shorewall to overwrite my settings or how can I set
them within the shorewall context?

Thanks
Holger