Re: Static NAT w/ iptables problem

To: debian-security@lists.debian.org
Subject: Re: Static NAT w/ iptables problem
From: Philipp Schulte <pschulte@uni-duisburg.de>
Date: Sat, 14 Aug 2004 18:23:10 +0200
Message-id: <[🔎] 20040814162310.GA2284@nepomuk.stw.uni-duisburg.de>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] NGBBJBJAFKMIAAGGPNOIIEEHDPAA.m.truemper@daewoo-automobile.de>
References: <[🔎] NGBBJBJAFKMIAAGGPNOIIEEHDPAA.m.truemper@daewoo-automobile.de>

Markus Trümper wrote: 

> Testing is done by connecting a dedicated computer to each interface and trying
> to reach the one on the internal net from the DMZ. The firewall can reach each
> computer and each computer can reach the firewall (ping).
> 
> My rules so far don't work. I can not reach 'server' by talking to 10.80.137.1
> on the external IF of the Firewall. Any idea why?

What is the value of /proc/sys/net/ipv4/ip_forward ? You either have
to set "ip_forward=yes" in /etc/network/options or do something like 
$ echo "1" > /proc/sys/net/ipv4/ip_forward

If forwarding is already enabled then please send the output of
"iptables -L -v -n". IMHO this is easier to read than shell-scripts
written by other people. Regards,
Philipp Schulte

Reply to:

References:
- Static NAT w/ iptables problem
  - From: Markus Trümper <m.truemper@daewoo-automobile.de>

Prev by Date: Re: Static NAT w/ iptables problem
Next by Date: Re: newbie iptables question
Previous by thread: Re: Static NAT w/ iptables problem
Next by thread: Re: Static NAT w/ iptables problem
Index(es):
- Date
- Thread