bridge on debian with shorewall

man bridge-utils-interfaces

bridge config
/etc/network/interfaces

iface br0 inet static
    bridge_ports eth1 tap0
    address 10.10.10.10
    netmask 255.0.0.0

routeback option for br0
/etc/shorewall/interfaces

#ZONE   INTERFACE       BROADCAST       OPTIONS
loc     br0            detect          routeback

User tags

DRBD opcontrol xhost tiger xfs PTR hdparm netfilter ipmitool idmapd cpanm rtsp bonding scsi ddos etch Areca lts asoundrc arch glxinfo StorMan CentOS nginx cluster OpenStack git profiling deb nvidia freedos iSCSI su wget boot MegaRAID lxc perl iptables raid opreport Swift cache taskset glusterfs shellshock ansible vtysh proxy virsh newgrp mdadm perlbrew fail2ban RT pacemaker ipmi KVM Adaptec find keyboard search tzdata encrypt rpm qemu hotplug dhclient iowait Salt apache video HTTPS chroot pvmove grub ps source sysresccd OpenSSL build bridge dhcp replication flash mariadb qcow2 vim raid5 ulimit top route docker sysctl.conf rkhunter ha LSI limit_conn exim 3Ware ip /etc/network/interfaces SYN vrrp CPAN HDFS SuperMicro tar youtube xargs gpg openvpn PXE routing slab noop centos 7 pam cgroups ssh dpkg debootstrap xen oprofile tun bug usb iostat security erase groups leap second fio radeon squeeze bacula sg alien nfs4 conntrack rsync firefox quagga tin SSD dovecot gdb swap exim4 numa vlan iops docker-compose core dump soa sublime htop bash lenny bscan arp corosync cpu usage sysfs APU language arping debian puppet php NFS sysctl elliptics kernel shorewall backtrace tftp AMD sftp sysrq storage mysql parallel dns equalizer backup performance zRam java fido7 munin graylog2 SpamAssassin X forwarding chromium drupal pulseaudio tool vrrpd lubuntu initrd ubuntu mount bind virtualbox rtl8723be .htaccess wordpress gre dstat ardour apt LVM jackd alsa cfq cpu gtk lstat virt-install in-addr.arpa regex MODx mkfs