On 1/12/19 1:24 PM, C. Cook wrote: > > > On 1/12/19 1:10 PM, C. Cook wrote: >> >> >> On 1/12/19 12:45 PM, C. Cook wrote: >>> >>> >>> On 1/12/19 12:37 PM, Roberto C. Sánchez wrote: >>>> On Sat, Jan 12, 2019 at 12:33:48PM -0800, C. Cook wrote: >>>>> ... and can't get up! >>>>> >>>>> [Sat Jan 12 11:56:22 2019] FORWARD REJECT IN=eth0 OUT=eth0 >>>> ^^^^^^^^^^^^^^^^ >>>> >>>> Have you specified routeback for eth0 in interfaces? >>>> >>>> Regards, >>>> >>>> -Roberto >>> >>> No, but never have in the past. Suddenly it stopped working. >>> >>> Now I've changed the line to: >>> >>> net eth0 >>> tcpflags,dhcp,nosmurfs,sourceroute=0,routefilter,routeback >>> >>> ... and I'm no longer getting the forwarding or any other error in >>> my router or server, but I still can't pull up delphi-real-estate.com >>> >> Ok, the router's interface looking toward the DMZ has no IP! >> >> It thinks another system has its IP, but I don't have one set >> anywhere. Maybe 10.1.1.1 is no-mans-land? >> > Fixed the IP and I can ping the DMZ Apache server VM from the router > now, but curl to it and access from the outside still doesn't work. > I've confirmed that thr router is -not- passing along the ports to the DMS, even though this is set:
Web(DNAT) net dmz:10.1.1.30 - - - - 3/sec:10 Web(DNAT) local dmz:10.1.1.30 - - - ð0 ... and forwarding is on in all quarters. I don't have anything in snat. Is there supposed to be?
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users