On Sun, 23 Jun 2002, Tom Eastep wrote: > > The NAT rules that you post above don't include the fourth column. That > column determines if NAT occurs only from the interface specified in > column 2 or if it applies to connections from all interfaces. If you leave > it out, then NAT only applies to packets arriving through the interface in > column 2. Since you were pinging from another interface, NAT didn't apply > and the ICMP echo requests were directed to the firewall itself. >
Ok -- I'm now wiping the egg off of my face. The fourth column (ALL INTERFACES) defaults to "Yes". -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- Sponsored by: ThinkGeek at http://www.ThinkGeek.com/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
