On Sun, Apr 24, 2005 at 11:16:23PM +0600, askar ... wrote: > Here is my iptables -L -v result: > bash-2.05b# iptables -L -v > Chain INPUT (policy ACCEPT 2798K packets, 4013M bytes) > pkts bytes target prot opt in out source > destination > 0 0 REJECT udp -- !eth0 any anywhere > anywhere udp dpt:bootps reject-with icmp-port-unreachable > 0 0 REJECT udp -- !eth0 any anywhere > anywhere udp dpt:domain reject-with icmp-port-unreachable > 0 0 ACCEPT tcp -- eth1 any anywhere > anywhere tcp dpt:ssh > 77 4436 DROP tcp -- !eth0 any anywhere > anywhere tcp dpts:0:1023 > 1 78 DROP udp -- !eth0 any anywhere > anywhere udp dpts:0:1023 > > Chain FORWARD (policy ACCEPT 20 packets, 984 bytes) > pkts bytes target prot opt in out source > destination > 0 0 DROP all -- eth0 any anywhere > 192.168.0.0/16 > 954 45864 ACCEPT all -- eth0 any 192.168.0.0/16 anywhere > 0 0 ACCEPT all -- eth1 any anywhere > 192.168.0.0/16 > > Chain OUTPUT (policy ACCEPT 3958K packets, 3821M bytes) > pkts bytes target prot opt in out source > destination
As far as I can tell, your iptables checks out fine. I know you mentioned this in your first mail, but can you check if you have ip_forwarding turned on? cat /proc/sys/net/ipv4/ip_forward it should give a value 1 W -- ---------------------------------------------------------------- * Address: 45 Spelman Hall, Princeton University 08544 * * Phone: x68958 AIM: AngularJerk * * E-mail: [EMAIL PROTECTED] From: sep.dynalias.net * ---------------------------------------------------------------- "It was real. At least, if it wasn't real, it did support them, and as that is what sofas are supposed to do, this, by any test that mattered, was a real sofa. " Sortir en Pantoufles: up 13 days, 3:46 -- gentoo-user@gentoo.org mailing list
