Hi Thomas,
One question at this point. Do I need personal firewall installed?
No.
Or can it be that I have not the correct rights for some files?
Yes.
external card on eth0 - 192.168.0.1/255.255.255.255 internal card on eth1 - 192.168.159.0/24
ppp0 as external device is ok. The "only" thing that's going over your eth0 are the pppoe packets. (That is the data to and from ppp0, encapsulated in ethernet packets.) I couldn't find anything wrong with the firewall rules now, so.. let me think. One problem could be the "test" mode. Hmm, Where do you start the firewall? It should be _after_ the connection has been established. If you haven't already altered the ip-up/-down scripts, do the following: Open the file /etc/ppp/ip-up.local in an editor. If it does _not_ exist, put the following five lines in there #!/bin/sh START_FW2="yes" export START_FW2 /sbin/SuSEfirewall2 start /sbin/ifconfig ppp0 mtu 1452 If it does exit, leave the first of those lines out, append the others at the end! Now edit the file /etc/ppp/ip-down.local. If it does _not_ exist, put the following four lines there: #!/bin/sh START_FW2="yes" export START_FW2 /sbin/SuSEfirewall2 stop If thefile does exist, leave the first line out and append the others at the end. Try this and tell what happens..
Well now the messages: One for trying to connect from a machine on the LAN (trusted, local) and one messages for trying to connect from my Linux router to the internet.
Mar 28 21:35:12 linux kernel: SuSE-FW-UNALLOWED-ROUTING IN=ppp0 OUT=eth1 SRC=207.46.28.116 DST=192.168.159.11 LEN=40 TOS=0x08 PREC=0x00 TTL=52 ID=10637 DF PROTO=TCP SPT=80 DPT=4022 WINDOW=17400 RES=0x00 ACK URGP=0
This is strange. Perhaps the test mode doesn't allow routing
Mar 28 21:35:21 linux kernel: SuSE-FW-UNALLOWED-TARGET IN=ppp0 OUT= MAC= SRC=80.135.123.51 DST=217.89.17.95 LEN=52 TOS=0x00 PREC=0x00 TTL=124 ID=7443 DF PROTO=TCP SPT=3413 DPT=1214 WINDOW=45680 RES=0x00 SYN URGP=0 OPT (020405AC0103030301010402)
This is someone trying to connect to a kazaa server on your router. (DPT=1214) Robert