On Monday 20 January 2003 01:32 pm, Bryan D. Payne wrote: > > maybe you should be a bit more specific of what you did and what > > _exactly_ gets dropped. > > Can do. Here's some more detail on the setup: <snip> > 3: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100 > link/ether 00:a0:24:e4:66:ea brd ff:ff:ff:ff:ff:ff > inet 192.168.0.4/24 brd 192.168.0.255 scope global eth0 > 4: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100 > link/ether 00:a0:cc:57:e7:a1 brd ff:ff:ff:ff:ff:ff > inet 192.168.1.254/24 brd 192.168.1.255 scope global eth1 <snip>
The problem is your ISP is giving you a reserved ClassC private address which is blocked by default with all LEAF firewalls. Check http://www.shorewall.net and find the rfc1918 option (norfc I think) to use to open your external interface to your ISP's routers with the firewall ruleset. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net ------------------------------------------------------- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
