hi
i have a strange night with our firewall ;)
i wanted to utilize the icmp redirect packages to connect our to different networks on the same segment
i have a lot of these messages in dmesg:
Redirect from 10.0.0.2 on lo about 152.66.235.1 ignored.
Advised path = 0.0.0.0 -> 0.0.0.0, tos 00
---
with tcpdump i saw strange packets crawling on the lo interface ;)
IP 10.0.0.2 > 0.0.0.0: icmp 104: redirect 0.0.0.0 to host 152.66.235.1
when i look into these packets, there is another icmp redirect with : 0.0.0.0 -> 0.0.0.0
i've check many things, the most imports:
# ip r g 152.66.235.8 from 157.181.96.1 iif eth0
152.66.235.8 from 157.181.96.1 dev eth0 src 10.0.0.2
cache <src-direct,redirect> mtu 1500 advmss 1460 hoplimit 64 iif eth0
# ip r g 152.66.235.1
152.66.235.1 dev eth0 src 10.0.0.2
cache mtu 1500 advmss 1460 hoplimit 64
i think it should work...
our firewall is acting as an arp-proxy on our network, it does some packet filtering and traffic accounting,
nothing unusual
it runs 2.6.11.8, on another machine(with 2.4.29) which is does nearly the same - everything works fine, and i see those redirect
messages...
i could drop in a lot of config/sysinfos but i think i missed something very basic...
best regard, kirk
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
