Either you maybe do only have a static route between dmz clients and loc but
no default route or maybe something is wrong with your rules or policies.
Does your policy file logs all all drop and net all drop? If yes, what do
you see in your messages?
Cheers
Mike
_____
Von: Wilson Kwok [mailto:leiw...@yahoo.com.hk]
Gesendet: Dienstag, 2. Februar 2010 10:45
An: shorewall-users@lists.sourceforge.net
Betreff: [Shorewall-users] Suddenly DMZ can't access to internet
Hello
We are using old version ( shorewall-3.0.7-1) with Centos 5.3
The shorewall has three zones (net / loc / dmz).
Loc can access to internet with no problem and can access to DMZ.
DMZ can't access to internet.
Net can't access to DMZ with NAT.
I tried to restart the machine / check Lan card / check cable , they were
work find.
Is it DMZ Lan card problem? but it can start at Centos ...
Thanks !!
_____
Yahoo!香港提供�W上安全攻略,教你如何防��黑客!
<http://hk.promo.yahoo.com/security/> 了解更多
------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
