/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ Hey All, There is a problem I have been having with my firewall lately that has been stumping me. My current configuration, that has been working for over a year now, consists of a masq'd private netowrk (192.168.0.xxx) and a private network of servers (10.10.10.xxx) which we do portfw to for specific services on the firewall. The problem came up when I had to move several machines around, as well as thier IP address's. One machine specifically has been giving me problems, it is a webserver. From time to time the firewall will not allow requests to port 80 to be forwarded to the webserver. When I do a portscan on the server (with nmap) it first complains that the firewall is blocking ICMP requests. I run nmap with the -P0 switch to bypass this and then port 80 requests start flowing through the server. There are several other websites that are hosted behind this firewall, yet only one is affected. I have checked my code several times and can not find any obvious problems. Any help would be greatly appreciated. Here is my system info: RedHat linux 6.2 with a custom build of the 2.2.16 kernel relevant configuration lines for the firewall script: #brings up the extenal IP address of the server /sbin/ifconfig eth1:36 209.208.157.26 broadcast 209.208.157.63 netmask 255.255.255.192 #IPMASQ portfw for the server /usr/sbin/ipmasqadm portfw -a -P tcp -L 209.208.157.26 80 -R 10.10.10.25 80 Cheers! pete _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
