bridge on debian with shorewall

man bridge-utils-interfaces

bridge config
/etc/network/interfaces

iface br0 inet static
    bridge_ports eth1 tap0
    address 10.10.10.10
    netmask 255.0.0.0

routeback option for br0
/etc/shorewall/interfaces

#ZONE   INTERFACE       BROADCAST       OPTIONS
loc     br0            detect          routeback

User tags

soa jackd iSCSI HTTPS virt-install PTR firefox APU top bacula graylog2 opcontrol deb bug git debian Adaptec gdb pvmove search bind CPAN xhost xargs drupal performance ip pam video virsh fail2ban ubuntu nvidia replication parallel keyboard kernel KVM Swift tzdata ps bridge fido7 alsa nginx freedos scsi sysctl etch glxinfo wordpress routing mkfs lts gpg lstat newgrp rtl8723be conntrack raid noop profiling build xfs sysfs fio xen youtube tftp zRam bscan slab find ulimit groups PXE shorewall lenny cpu rsync hotplug cache RT grub opreport SuperMicro tun ipmitool leap second gre mdadm Areca wget nfs4 sysresccd X forwarding htop tar SYN apt cluster flash virtualbox boot 3Ware LSI cfq docker limit_conn /etc/network/interfaces sublime perlbrew regex bonding route initrd pulseaudio squeeze asoundrc exim4 quagga chroot DRBD CentOS php MegaRAID OpenStack MODx raid5 glusterfs tool ssh java alien perl elliptics arping LVM vlan bash tiger sysrq numa ddos iops munin apache taskset lubuntu proxy vtysh dovecot swap ardour OpenSSL vrrpd SpamAssassin security erase cpu usage dns arp mariadb su dstat mount iostat NFS ipmi rpm cgroups docker-compose AMD corosync gtk lxc ansible vim language sftp SSD netfilter sysctl.conf cpanm .htaccess shellshock hdparm HDFS radeon centos 7 rtsp qcow2 equalizer dhcp dpkg usb backtrace sg exim StorMan openvpn tin pacemaker in-addr.arpa rkhunter arch vrrp source backup iptables chromium mysql encrypt storage dhclient puppet idmapd ha iowait oprofile debootstrap qemu Salt core dump