On Mon, Oct 18, 1999 at 08:50 +0000, romba@fem.maschinenbau.uni-dortmund.de wrote:
Our setup passes all the tests described except one - it doesn't forward. I can ping any computer from the firewall/router, I can ping both sides of the firewall from the LAN, but I can only ping the outside adress from the outside and I can't get through it. IP-forwarding is switched on and all default policies in ipchains are set to ACCEPT.
You know that ping is using icmp packets which might not make it through the masquerading (I suppose the router does masq your net, too)? Try tcpdump which by default uses udp packets if not told otherwise. And keep in mind that you might not want to keep ping open after successfully installing your firewall -- there are ways (have been for quite some time) to use this channel as a "regular" means of transport. virtually yours - Gerhard Sittig -- If you don't understand or are scared by any of the above ask your parents or an adult to help you.