The masq table has the source subnet 92.168.0.0/16. Shouldn't that be
192.168.0.0/16?
-Les
> On Mar 15, 2017, at 5:24 PM, Ryan Joiner <[email protected]> wrote:
>
> Hello, I'm doing the most simple firewall setup on CentOS 6 using Shorewall
> 5.1.2.4-1. It is two cards, eth0 and eth1. I'm using the two-interface
> sample file for snat and it seems like snat is not working. The firewall has
> open access to the internet and that is working fine, just PC's behind it
> can't get out. I've been using shorewall for over 10 years and this one has
> me stumped!
>
> Also, I had setup a firewall last weekend on CentOS7 using Shorewall
> 5.1.2.3-1 and had this same exact issue. I downgraded to 5.0.1.4, same exact
> config, and everything worked perfectly. Maybe I missed something that
> changed since then?
>
> Firewall IP's
> eth0 is 192.168.122.195/24
> eth1 is 192.168.20.1/24
> eth2 exists but is off and not being used FYI.
>
> Device on network trying to get to internet is 192.168.20.2/24
>
> Attached is dump.
> Thank you!
> <test.txt>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
