Leonardo Korndorfer wrote: > Thanx Tom, here goes the pack count. > > Chain net_dnat (1 references) > pkts bytes target prot opt in out source > destination > 2 120 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 > tcp > dpt:80 to:192.168.11.11 > > So, thats the last line of the debugging.
That means that the requests are at least reaching your firewall. That usually lmeans that either 192.168.11.11 isn't in the 'lan' zone or that the default gateway on 192.168.11.11 isn't set to the IP address of the firewall's interface to the 'lan' zone. > Its reaching the last rule, but that 0.0.0.0/0 destination means what i think > that means? How could I possibly know what you think it means? -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
