I also noticed that I was suddenly getting a huge amount of new messages with Configuration 2 such as:
Feb 14 08:03:52 kernel: Shorewall:FORWARD:REJECT:IN=enp7s0f2 OUT=enp7s0f2 MAC=e8:ea:6a:0c:4c:1e:ec:30:91:9f:ee:c1:08:00 SRC=10.215.236.123 DST=10.215.246.167 LEN=508 TOS=0x00 PREC=0x20 TTL=59 ID=47993 DF PROTO=TCP SPT=8888 DPT=53912 WINDOW=84 RES=0x00 ACK PSH URGP=0 Why am I getting these in the log? The host with IP address 10.215.246.167 (DST) is behind IF_LAN=enp10s0 whereas the host with IP addr. 10.215.236.123 (SRC) is behind IF_IBS= enp7s0f2. Legitimate/allowed traffic is from 10.215.246.167 to 10.215.236.123 on port 8888. So what does FORWARD:REJECT imply in this case? _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
