Hi, I am trying to setup a linux (debian potato, kernel 2.2.19) box as a firewall . I have 3 nics on it.
I have got a bunch of 32 public ips from my isp(210.212.236.96/27). I have subdivided this into groups of 16 each and one group is given for my dmz (210.212.236.112/28) First card eth0(210.212.236.97) connected to my cisco router. 2rd card (eth1) to internal lan with pvt ips. Third(eth2) (210.212.236.113) one to a hub which connects to my machines with public ips (my dmz).my dmz has proxy/mail/web servers. My router ip is 210.212.236.105 I am able to ping to router and access net from the firewall but unable to ping even the router (210.212.236.105) from other machines connected to eth1 or eth2. From all machines, I can ping all cards in the firewall. This is route output: Destination Gateway Genmask Flags Metric Ref Use Iface 210.212.236.112 * 255.255.255.240 U 0 0 0 eth2 210.212.236.96 * 255.255.255.240 U 0 0 0 eth0 192.168.100.0 * 255.255.255.0 U 0 0 0 eth1 default 210.212.236.105 0.0.0.0 UG 0 0 0 eth0 For example, if I try to traceroute to 210.212.236.105, it reaches the correct card in the firewall but from there it times out. (no ipchain rules running right now). Any suggestions ? Suresh ===== Suresh Kumar R. Assistant Professor Dept of Electronics & Communication College of Engineering, Thiruvananthapuram - 695 016, INDIA Email : [EMAIL PROTECTED] Phone : 91-471-515660/515653/595634 __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
