Hi I made a complex firewall script that had very strange problems. I took plenty of time trying to find out what was wrong until I found that even this simple script (that is said to be working in NAT-HOWTO on netfilter website) had the same problems :
# Begin script iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE # Turn on IP forwarding echo 1 > /proc/sys/net/ipv4/ip_forward # End script These are the strange behavior : - Can access some http website (www.lemonde.fr www.google.com ...) - Can't access some http website (www.yahoo.fr www.meteo-france.fr ..) - Some apps that were working under a firewall under ipchains (the roaring penguin ADSL firewall script) do not work any more. I tried a simple "telnet www.yahoo.fr 80" to see what was wrong, connection was accepted, I typed "GET" and i received the HTML code to the ending "</html>", but it didn't close the connection as they did for the working website. A friend told me that it could be the website with cookies that are involved in the problem. My config : Firewall : Processor : 486 DX 33 (is it enough ?) Connection type : ADSL (France telecom, modem ECI) on ppp0 Kernel : Linux 2.4.18 + patch-o-matic 1.2.6a IPtable ver : 1.2.6a LAN device : NE2000 (10BASET) compatible device on eth0 LAN computer : Linux or win2000, with bigger config than Firewall connected on 100 Mbits network device. DNS are those of the provider or an internal DNS. (that doesn't change anything to my problems) I would appreciate a quick help. I'm quite new to firewall and iptables, so even if you haven't the solution, i'll be glad to learn more. Do not hesitate to answers if you have something in mind. Valentin LAB mail : vaab at wanadoo.fr