On Wed, 2005-03-23 at 09:08, Sebastiao Antonio Campos (GWA) wrote:
> After I had applied the solution bellow I got the follwing msg error:
>
> Neighbour table overflow.
IIRC--that error means you've filled up your arp table. the values
(defaults shown) are controlled by the kernel parameters:
net.ipv4.neigh.default.gc_thresh3 = 1024
net.ipv4.neigh.default.gc_thresh2 = 512
net.ipv4.neigh.default.gc_thresh1 = 128
how many hosts are on the physical subnets with your firewall machine?
i was surprised to see you say that everything was working, as your
question appeared to be about policy routing, yet setting up a SNAT
seemed to magically make it work--which made no sense to me.
-j
--
"Well, I'm not calling you a liar, but... I can't think of a way to
finish that sentence."
--The Simpsons
