On Jo, 03 mar 11, 22:08:00, Jason Hsu wrote: > > What's going on? How can turning OFF a firewall block Internet > access? I thought that the purpose of a firewall is to BLOCK > connections, not MAKE connections.
Shorewall is not just a firewall (frontend), it can be used to activate the NAT, via the: IP_FORWARDING=On option in /etc/shorewall/shorewall.conf. It defaults to 'keep', but it's very convenient to use if you already use shorewall. If you want to do forwarding without shorewall set it to 'keep' and do the setting in /etc/sysctl.conf (for unknown reasons that never worked for me, which is why I prefer the shorewall way) Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature