On Mon, Aug 15, 2011 at 02:10:33PM -0700, Tom Eastep wrote: > I don't have time ATM to give you detailed help, but > http://www.shorewall.net/FoolsFirewall.html#id36131257 explains what > happens when two firewall interfaces are effectively connected to the > same ethernet network. That may help you figure out where the problem > is. Tom, I appreciate all suggestions. I'm pretty sure the guy in charge of our switch-and-cable infrastructure hasn't connected any switch to more than one zone - because I've specifically asked him before, he gave me that assurance, and he's a smart guy. But I'll ask again. Meanwhile, if anyone else here has a suggestion, the working assumption is that we don't have an example of the "Fool's Firewall" (as it is very clearly explained on Tom's page) so other suggestions will also be appreciated. Thanks, Whit -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
