Chris, It's not your problem but I just noticed something:
DNAT tcp -- 0.0.0.0/0 x.x.x.x tcp dpt:80 = to:192.168.0.2:80 Everywhere else in your rules you're talking about 192.168.10/24 which I believe should be your internal subnet, but your webserver is at 192.168.0.2. Is this correct? Also I see "Chain BANNED (2 references)" but I only could find 1 reference in your FORWARD chain. Where is the other one? Can you just post the full rule set? Ramin On Tue, Apr 30, 2002 at 09:03:27PM +0100, Antony Stone wrote: > On Tuesday 30 April 2002 3:19 am, Chris Hoeschen wrote: > > > Sure thing: > > > > Chain PREROUTING (policy ACCEPT) > > Chain FORWARD (policy DROP) > > Chain BANNED (2 references)
