-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi!
--> OK, now we need to know the interface variables of the firewall FW_DEV_EXT, FW_DEV_INT, FW_DEV_DMZ
I suspect there's something wrong with these because the firewall complains about an ILL-TARGET, so probably a packet with a source IP coming from the wrong interface (at least the firewall thinks so).
Sounds like wrong direction. SuSEfirewall has following limitations: internal ip - external interface of firewall will be blocked external ip - internal interface of firewall will be blocked If you want to access this simply add a line in custom rules script to allow this action (even if it's insecure). Other possibility to not block high ports as they are needed by tcp/ip. TCP works like this: connection to server-ip:target_port response to client-ip:dynamical_portrange_1024-65535 TCP-example:1.2.3.4 from 4.3.2.1 = 1.2.3.4:21 (ftp = port 21) - 4.3.2.1:1024-65535 UDP in the opposite answers on the same port the connection is started. Routing seems to work? Why there are two routes to eth0? Normally for routing to the same interface you need a virtual interface (e.g. /dev/eth0:1) which has to be created or is the second route for eth1? Reguards Philippe - -- Diese Nachricht ist digital signiert und enthält weder Siegel noch Unterschrift! Die unaufgeforderte Zusendung einer Werbemail an Privatleute verstößt gegen §1 UWG und 823 I BGB (Beschluß des LG Berlin vom 2.8.1998 Az: 16 O 201/98). Jede kommerzielle Nutzung der übermittelten persönlichen Daten sowie deren Weitergabe an Dritte ist ausdrücklich untersagt! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iQD1AwUBQtTcskNg1DRVIGjBAQK65Qb/cYPj+j56psbIBb/VqXhPA4fWGQ8KqSfw PRq831y98ENOEbhE3iHHxyBxj31M1Ms1UMw27740iK+H9pVRNCptQdo8ikjYC9ku PArQk4FitSrW2icHWx1fDjdsJGsye6XvBBOIARvWSVWtoIqGrNqFgaw/h8tVxghN B6rsv2rn02g3Ad+H1TjG2CTI8lAOwOUYu2raFJ1rRF+CZZoYaFiYQgU/w7aYWdp6 ZPjyhbllV8DaNWKJYy/hhcmICXvUKA6RD/YWcMwyJYc9HGny4Vzy4SAw16eo9vuU eJcjzgrZhAk= =B+dR -----END PGP SIGNATURE-----