Anyway you can drop the firewall rejects and DROP rules all together just for testing. At least the input ones since that is where the problem is. Maybe turn your attention to the FW rules of the host adapter as well as the bridge.
Just a guess however, the best way to get to the bottom of it is by logging your rules -j LOG --log-prefix "LOGDROP: " --log-tcp-options --log-ip-options You will need the xt_LOG kernel module. I can help with the errors of getting that going. N. _______________________________________________ Pacemaker mailing list: Pacemaker@oss.clusterlabs.org http://oss.clusterlabs.org/mailman/listinfo/pacemaker Project Home: http://www.clusterlabs.org Getting started: http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf Bugs: http://bugs.clusterlabs.org
