I am trying to route traffic from LOC to a network I have configured in the routes file.

I have a kubernetes cluster setup. The IP of the physical port of the cluster controller in on the LOC network. I have exposed some services on a 192.168.x.x network that only exists in the kubernetes cluster. I have added an entry into the shorewall routes file as follows:

main        192.168.x.x/24    192.168.1.2

Where 192.168.1.2 is the IP address of the cluster controller, and the 192.168.x.x/24 network is the exposed network in the cluster.

The cluster controller can connect to the cluster services on exposed ports, the firewall can connect to the exposed ports, but other devices on the LOC network cannot connect to the exposed ports.

If I disable the firewall by adding (ALL ALL ACCEPT) in the shorewall policy file, devices on the LOC network can connect to the exposed ports (which is what I am trying to do). I obviously need to do something else via a RULE or something else when the normal (ALL ALL REJECT) line is the last line in the policy file.

Besides adding a route in the routes file, how do I route traffic from LOC network to the network that is exposed in the kubernetes cluster?

Thank You.


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to