/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
But on my firewall configuration y have EXTIF="eth1" INTIF="eth0" the private net has only one route to reach the firewall. i quite stuck. don't know what to do. my firewall script is one i found in http://www.tldp.org/HOWTO/IP-Masquerade-HOWTO/firewall-examples.html once I can put this script up and running I will move to the strongest one. any clue on what can be going on? the stragest thing is that right now for example, all the computers on the network can access the internet via the firewall. thks a lot Julian de Anuqin -----Mensaje original----- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] nombre de Fuzzy Fox Enviado el: Jueves, 31 de Julio de 2003 11:28 a.m. Para: [EMAIL PROTECTED] Asunto: [Masq] Re: Problem /* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ Julian Eduardo de Anquin <[EMAIL PROTECTED]> wrote: > > Jul 28 09:59:18 morpheus kernel: IN=eth1 OUT=eth1 SRC=180.120.10.83 ^^^^^^^^^^^^^^^^ > DST=200.69.128.1 LEN=60 TOS=0x00 PREC=0x00 TTL=127 ID=6431 PROTO=ICMP TYPE=8 > CODE=0 ID=512 SEQ=33792 Can you tell me, why is the "IN" and the "OUT" both eth1? How can that be? That is your external interrace, so why is internal IP coming in? I think this is the clue that will lead to your answer. Is there some other route that private net can use to reach the firewall? -- [EMAIL PROTECTED] (Fuzzy Fox) || "Good judgment comes from experience. sometimes known as David DeSimone || Experience comes from bad judgment." _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list. _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
