Logical interfaces and shorewall configuration

To: debian-user@lists.debian.org
Subject: Logical interfaces and shorewall configuration
From: Bill Wohler <wohler@newt.com>
Date: Mon, 11 Sep 2006 12:56:36 -0700
Message-id: <[🔎] 5512.1158004596@olgas.newt.com>

I've configured my home network on ath0 and other networks on various
logical networks. When I'm up on a logical network (e.g., ath0=foo), I
get a lot of Shorewall messages that I don't get on the physical network
(e.g., ath0).

If I say "ifup ath0=foo", avahi-daemon, for example, triggers the
following shorewall messages:

    Sep 11 12:18:27 olgas kernel: Shorewall:net2all:DROP:IN=ath0 OUT= MAC=
    SRC=192.168.0.9 DST=224.0.0.251 LEN=234 TOS=0x00 PREC=0x00 TTL=255 ID=11
    DF PROTO=UDP SPT=5353 DPT=5353 LEN=214

If I say "ifup ath0", then avahi-daemon does not trigger any messages. I
suspect that the logical interface is at issue. The file
/etc/shorewall/interfaces contains:

    net	ath0	detect	dhcp,routefilter,blacklist

I tried using a wildcard (e.g., "ath+" instead of ath0), but that didn't
work.

Suggestions?

Using Shorewall 3.0.7 in etch.

-- 
Bill Wohler <wohler@newt.com>  http://www.newt.com/wohler/  GnuPG ID:610BD9AD

Reply to:

Prev by Date: Re: is it possible to create a black box with debian?
Next by Date: Re: Wake up from standby
Previous by thread: Re: SSHD, why wouldn't it be part of the install.
Next by thread: eth config for pppoe interface
Index(es):
- Date
- Thread