I have Bering installed in a basically default setup: eth0 is the external (internet) interface eth1 is the internal interface
I'd like to use snat so that computers on the network behind eth1 can access the internet using eth0's ip address. As I understand it, this should be the default shoreline configuration for Bering. Unfortunatly, when I try to access the internet using a machine on my internal network (behind eth1 of the Bering machine)...it fails. A little tracing has showed that the packets actually do get through the bering host, but are denied on the way back: Outgoing request (this seems to work alright): internal host --> firewall --> internet server Reply (this is dropped at the firewall): internet server --> firewall // DROP The firewall never sends the packet back to the internal host. Instead, it DROPs the packet and logs it. Could someone suggest where I should start looking to resolve this problem? I've used iptables many of times, but browsing through the rulesets for shoreline can be a little daunting :-) Perhaps this is a problem that would be more easily solved by looking elsewhere...but I'm not really sure where to start. Thanks, bryan ------------------------------------------------------- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
