[Firewall] setup two external interfaces

Jérémy Lal kapouer at melix.org
Wed Mar 10 02:02:43 CET 2010


Hi, i have two external interfaces :
EXT_IF="eth0 eth1"

each one having an IP on a different subnet :
eth0 22.111.102.111
eth1 22.111.104.111

the server runs debian/squeeze, with linux-image-2.6.32 (amd64).
If i start without arno-iptables-firewall, i can ping the server
on both ip.
As soon as i launch arno-iptables-firewall, the server stops responding
on eth0. I still can log in through eth1. From the server :
ping -I eth0 google.com
does not work, and
ping -I eth1 google.com
does.

I tried configuring
EXTERNAL_NET="22.111.102.0/8 22.111.104.0/8"
or with
EXTERNAL_NET="22.111.0.0/16 22.111.0.0/16"
without success.

Is it a bug or misconfiguration ?

Thanks,
Jérémy.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://rocky.eld.leidenuniv.nl/pipermail/firewall/attachments/20100310/87c71fe3/attachment.pgp>


More information about the Firewall mailing list