Did u include the forwarding ? echo 1 >/proc/sys/net/ipv4/ip_forward
LC. Vosburgh, Brian P, CTR, WHS-BB wrote: >What am I missing on this? Packets aren't forwarding at all? > > >iptables -F INPUT DROP >iptables -F OUTPUT DROP >iptables -F FORWARD DROP > >iptables -P INPUT DROP >iptables -P OUTPUT DROP >iptables -P FORWARD DROP > >iptables -N allowed >iptables -A allowed -p TCP --syn -j ACCEPT >iptables -A allowed -p TCP -m state --state ESTABLISHED,RELATED -j ACCEPT >iptables -A allowed -p TCP -j DROP > >iptables -A FORWARD -i eth1 -o eth0 -m state --state ESTABLISHED,RELATED -j >ACCEPT > >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.255.0 >--dport 80 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.255.0 >--dport 80 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.254.0 >--dport 80 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.254.0 >--dport 80 -j allowed >iptables -A FORWARD -p TCP -d 140.185.104.180 -s internal.0/255.255.254.0 >--dport 80 -j allowed > > >iptables -A FORWARD -p TCP -d webserver..180 -s internal.0/255.255.255.0 >--dport 443 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.255.0 >--dport 443 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.254.0 >--dport 443 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.254.0 >--dport 443 -j allowed >iptables -A FORWARD -p TCP -d webserver.180 -s internal.0/255.255.254.0 >--dport 443 -j allowed > >iptables -A INPUT -p ALL -d local.71 -m state --state ESTABLISHED,RELATED \ >-j ACCEPT >iptables -A INPUT -p TCP -d local.71 -s internal.0/255.255.255.0 --dport 22 >-j ACCEPT >iptables -A INPUT -p TCP -d local.71 -s internal2.0/255.255.255.0 --dport 22 >-j ACCEPT > >
