Hi - I have shorewall-1.3.8-1 on a RH 7.3 machine that acts as a firewall
for my network. It was running the other day just fine, but today I have
problems getting to the firewall. It is a frame-relay network with Cisco
routers. Everything is 192.168.x.x / 24. I can't ping the firewall from
the WAN, but can from the main LAN. Sounds like a routing issue to me, but
it was working for about a month or two.
the firewall is 192.168.1.1
the router in the main office is 192.168.1.253
all main office clients point to 192.168.1.253 as the default gateway
all WAN clients point to the local routers
all WAN clients can ping main office devices - even print servers with no
default gateway
the way I got it to work before was by adding static routes to the firewall
and then I could ping, but not now
Should I make the firewall gateway the main router or enable something else?
Any help much appreciated
My firewall netstat -r is:
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
192.168.6.0 192.168.1.253 255.255.255.0 UG 40 0 0
eth1
192.168.5.0 192.168.1.253 255.255.255.0 UG 40 0 0
eth1
192.168.4.0 192.168.1.253 255.255.255.0 UG 40 0 0
eth1
192.168.3.0 192.168.1.253 255.255.255.0 UG 40 0 0
eth1
192.168.2.0 192.168.1.253 255.255.255.0 UG 40 0 0
eth1
192.168.1.0 * 255.255.255.0 U 40 0 0
eth1
A.B.C.0 * 255.255.255.0 U 40 0 0 eth0
127.0.0.0 * 255.0.0.0 U 40 0 0 lo
default A.B.C.D 0.0.0.0 UG 40 0 0 eth0
firewall
192.168.1.1/24
|
|
router
192.168.1.253
|
|
Frame-Relay
| \
| \
WAN Clients \
192.168.2.0/24 \
\
WAN Clients
192.168.3.0/24
Best regards,
Andrew Judge
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@;redhat.com?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
