Joffrey FLEURICE wrote: > I have delete "lo" Zones And Interface and rebuild all the firewall >>From Local I ping www.google.fr with DNS resolution > DNSMASK installed on the firewall. > POSTFIX and Squid+SquidGuard Installed on firewall > All clients machines have the IP of Firewall for Dns resolution > > New Dump joint > > Without Squid : I surf and all works perfectly > With Squid And REDIRECT rule : surf Is VERY TOO LONG and they no image on web > ...( 12 minutes for one Page !!!! without images ) or I have this reponce > > Connection Failed > The system returned: > > (110) Connection timed out > > PLEASE HELP ! I don't understand !!!
Joffrey, My advice to you is still the same -- you are going to have to use tcpdump or ethereal to see what is happening. You have the computer there in front of you -- we don't. So only you are going to be able to solve this. We are not. From the dump you sent, it looks like many SYN packets are being sent on ppp0 and never replied to. So you need to confirm that they are actually being sent on ppp0 and not on eth0. Does ppp0 work if you configure it as your only Internet connection? -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
