Hi, I am trying to setup a linux (debian potato, kernel 2.2.19) box as a firewall . I have 3 nics on it.
First one(210.212.236.97) connected to my cisco router. 2rd card (eth1) to internal lan with pvt ips. Third(eth2) (210.212.236.113) one to a hub which connects to my machines with public ips (my dmz).my dmz has proxy/mail/web servers. I am able to ping to router access net from the firewall but able to ping even the router (210.212.236.105) from other machines connected to eth1 or eth2. From all machines, I can ping all cards in the firewall. This is route output: Destination Gateway Genmask Flags Metric Ref Use Iface 210.212.236.112 210.212.236.113 255.255.255.240 UG 0 0 0 eth2 210.212.236.112 * 255.255.255.240 U 0 0 0 eth2 210.212.236.96 210.212.236.97 255.255.255.240 UG 0 0 0 eth0 210.212.236.96 * 255.255.255.240 U 0 0 0 eth0 192.168.100.0 192.168.100.254 255.255.255.0 UG 0 0 0 eth1 192.168.100.0 * 255.255.255.0 U 0 0 0 eth1 default 210.212.236.105 0.0.0.0 UG 0 0 0 eth0 For example, if I try to traceroute to 210.212.236.105, it reaches the correct card in the firewall but from there it times out. (no ipchain rules running right now). Any suggestions ? Suresh ===== Suresh Kumar R. Assistant Professor Dept of Electronics & Communication College of Engineering, Thiruvananthapuram - 695 016, INDIA Email : [EMAIL PROTECTED] Phone : 91-471-515660/515653/595634 __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]