I am a little unsure on how your network looks... Maybe
a diagram would help illustrate better.
For ipchains, you can use the "-l" option for logging so
you can debug where the problem(deny/reject packets) is.
ie... ipchains -A "bla bla bla" -l
-> From [EMAIL PROTECTED] Tue Oct 10 02:23:27 2000
-> Delivered-To: [EMAIL PROTECTED]
-> From: [EMAIL PROTECTED]
-> X-eGroups-Return: [EMAIL PROTECTED]
-> Date: Tue, 10 Oct 2000 07:19:49 -0000
-> To: [EMAIL PROTECTED]
-> Subject: Firewall,Gateway not forwarding the packets to Internet..
-> User-Agent: eGroups-EW/0.82
-> X-Originating-IP: 203.129.254.6
-> Sender: [EMAIL PROTECTED]
-> X-Loop: [EMAIL PROTECTED]
-> Status: RO
->
-> We are implementing a Linux based Firewall System with IPCHAINS.
->
-> As per our current Intenet setup,all the external IP's(Given by the
-> ISP) are using the router as Default Gateway.
->
-> But as per our design except the external IP in the Firewall,all
-> other IP's should use the Firewall System as the gateway.
->
-> We are able to run the Firewall Script(ie, rc.firewall in /etc/rc.d).
->
-> We have two NIC's in the firwall system.
-> The packets are not forwarded to internet,after making the firewall
-> system as the Default Gateway.
->
-> We are running a DNS service(BIND) in the firewall system.The client
-> are getting the domain the name resolved but they are not able to
-> browse the Net.
-> (Packet Forwarding is enabled as IP_V4=yes)
->
-> We already enabled the forward IPCHAINS also.
->
-> Do i have to add any other configuration, to make this system as
-> default gateway with firewall service??
->
-> Do i have to run a squid in the firewall server to increase the speed
-> of the Net.
->
-> Thanks in advance..
->
->
-> -
-> [To unsubscribe, send mail to [EMAIL PROTECTED] with
-> "unsubscribe firewalls" in the body of the message.]
->
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
