Re: changing ethernet devices, new one stops cold at iptables

From: Gene Heskett
Date: Fri Jul 23 2004 - 07:48:10 EST

On Friday 23 July 2004 07:13, Neil Horman wrote:
>>Gene Heskett wrote:

>> One thing I haven't tried is to reset the MAC address for the
>> nforce2 ethernet to match the D-Links hardware address. Is it
>> worth a try just to prove the point?
>I'd think so. Its a two minute test to verify that the problem is
>related to the MAC address of nic in the firewall. You may also
> want to add a LOG target to all the chains in your firewall to
> match on the origional MAC address so you can see what your
> iptables code is doing with the packet.

I'm in the process of trying that Neil, but if thats the case, it
means I cannot ever re-use that nic in another machine here. What
I'd druther do if this test proves positive, is to figure out howto
get the arp tables updated on the firewall so they reflect the new
MAC address for this machine. I've got both drivers as modules
effective with the next reboot so the testing switching will be much

Thanks for the shoulder to cry on.

Cheers, Gene
There are 4 boxes to be used in defense of liberty.
Soap, ballot, jury, and ammo.
Please use in that order, starting now. -Ed Howdershelt, Author
Additions to this message made by Gene Heskett are Copyright 2004,
Maurice E. Heskett, all rights reserved.
