Am Freitag, 4. Januar 2008 19:30:05 schrieb Tim Ertl:
> FIXED!
>
> [...]
>
> NOW I AM Working. If this was a dangerous fix I would appreciate
> comments...
>
> for PA in ppp0 ppp1 ppp2 ppp3 ppp4 ppp5 ppp6 ppp7 ppp8 ppp9 ppp10; do
> iptables -A forward_int -o $PA -i eth2 -j ACCEPT
> iptables -A forward_int -i $PA -o eth2 -j ACCEPT
> done
Looks save because it forwards between internal interfaces only.
I have overlooked another problem in your SuSEfirewall configuration. You must
activate class routing. This means that packets between interfaces belonging
to the same class (Eg, externa, internal, ...) will be routet to each other.
Add
FW_ALLOW_CLASS_ROUTING="yes"
to your configuration. Instead of yes you can use the zone name (int) instead.
This works more or less like your fix.
Cheers
Herbert
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
