Reason is because on this firewall I run scripts to check things like web server up status using "wget" and unfortunately my proxy is running on it which means I have to move it to another machine when I can't because then I can't turn on transparent proxying.. DoH!!
tcpdump shows it works to me.. OK, I'll ignore these tcpdumps then.. 08:45:15.916655 eth0 > firewall.3192 > jupiter.http: 08:45:15.917035 eth0 < jupiter.http > firewall.3192: I know the problem is really that I need to have SNAT on the PREROUTING rule to convert the 192.168.1.1:80 back to 203.x.x.x:80 but it's not supported.. Oh Well... thx anyway.. It's a live with thing then.... thanks, George Vieira Systems Manager Citadel Computer Systems P/L http://www.citadelcomputer.com.au -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
