On 8/11/2014 8:48 AM, Costantino wrote: > Hi Tom and all, > > > > I'm confronting an issue with Shorewall 4.5.6.2 and DNAT. > > > > I've got a server with two ethernet interfaces: eth0 connected to WAN > and eth1 to LAN. > > > > Although I've got a DNAT rule allowing for requests coming through the > WAN interface to be forwarded to their respective port 80, 8080 and 443 > of the LAN interface, the log shows that those requests have been dropped. > > At the same time the user on the client PC, while experiencing a very > long delay, sees that his request in the end has been served. > > > > I fail to see where my Shorewall configuration could be wrong and I > would appreciate your advice to help me diagnose my issue.
Have you looked at the DNAT troubleshooting procedure described in FAQs 1a through 1c? > > I'm attaching a zip file with the output of the SHOW command and the log. The output of 'shorewall dump' collected as described at http://www.shorewall.net/support.htm#Guidelines is much more useful. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
