/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
Hello all, I am installing a second ip masq network for my business. The first one worked incredibly well and gave us no problems. Kudos to the guys who wrote the howto, it's been really helpful. This second masq server is unfortunately giving me a bit of a problem. It seems to stop forwarding after about 30 minutes. The problem does not go away if I simply flush the chains and reload the rules; I have to do a full reboot. (Right now I have a cron job performing a reboot every 25 minutes or so, but I don't think that's a solution I want.) I use a very simple firewall script (based on the howto example): > # Forward SMTP requests to 192.168.0.3 > iptables -A FORWARD -p tcp -i $extif -o $intif --destination-port 25 -j ACCEPT > iptables -A PREROUTING -t nat -p tcp -d 192.168.0.3 --destination-port 25 -j DNAT --to-destination 192.168.0.3:25 > > # Set SNATting. > iptables -A FORWARD -i $extif -o $intif -m state --state ESTABLISHED,RELATED -j ACCEPT > iptables -A FORWARD -i $intif -o $extif -j ACCEPT > iptables -A FORWARD -j LOG > iptables -A POSTROUTING -o $extif -j SNAT --to-source $masq_server_pub I am using the SNAT rule because I have all static public IPs. I noticed that the SMTP forwarding does not want to work (It's my first time using port redirection, so perhaps I have the logic wrong.). I am using iptables-1.2.4 with the 2.4.17 kernel. Any help would be greatly appreciated. Thanks, AJ Bostian _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
