Maxx Christopher Lobo wrote:
> To answer questions of a diagnostic nature, yes, I can still SSH into
> the remote firewall, and I can make HTTP requests from the wall itself
Your connectivity to your box appears to be ok. The ability of the box to
send and receive seems to be ok.
> which go through fine and are reciprocated. I cannot, however, make the
> same request from a machine BEHIND this firewall and get a response.
> And yes, the logs see the request from the machine behind the firewall,
> and yes, they are accepted, but no, they never get a response back from
> a random website/ftp site/whatever.
But when you try to NAT something, it never gets a response. If someone
gives you the answer on how to look at the NAT tables, then you'll probably
find your problem. If you run something like iptraf on the NAT box, does it
show the correct IP addresses and ports (outgoing masq'd will be
external:6xxxx -> remote:80 and the internal addressing will be
internal:1xxx -> remote:80).
Blue skies... Todd
--
Most traditional Pee-Cee user groups, I've noticed, function mainly as
commiseration societies for people who've bought lousy hardware, are
struggling and wasting time trying to deal with it, and want to exchange
coping-strategy tips with others in the same boat. -- Rick Moen
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
