On Fri, Oct 13, 2000 at 08:26:26PM +1000, Jon Biddell wrote:
> 1. Everything internally can ping everything else.
> 2. Gateway can ping the 'net.
> 3. Nothing else can ping the 'net.
Theres a kernel option to masquerade ICMP traffic, CONFIG_IP_MASQUERADE_ICMP,
perhaps its turned off.
> 4. (This is the killer) - SWMBO's EvilWare machine can surf / download
> from her POP3 account.
Is this a problem? A firewall doesn't really care what account
an IP packet came from, it just looks at the ip and port
numbers. You need to set up a proxy server if you want accounts.
> Oh, gateway can browse http pages, but not https.
It might be a proxy setting problem with your browser?
--
chesty
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
