Hi Jannie,
From: Jannie Kruger [mailto:jhk@cssgroup.co.za] Hi
[snip nice ascii-pic]
Workstation1 needs to browse to the Intranet WEBserver (192.96.150.76) My configuration for SuSEfirewall2 is as follows:
FW_DEV_INT="eth0" FW_DEV_EXT="eth1" FW_ROUTE="yes" FW_MASQUERADE="yes" FW_MASQUERADE_DEV="eth1" FW_MASQ_NETS="0/0" FW_LOG_ACCEPT_ALL="yes" FW_LOG_DROP_ALL="yes"
I wouldn't masquerade "0/0". Set it to 192.168.56.0/24. And set the FW_MASQUERADE_DEV to FW_MASQ_DEV="$FW_DEV_EXT" - this should do the trick ;-)
With SuSEfirewall2 *not* started Workstaion1 can browse to Intranet WEBserver. With SuSEfirewall2 started the logs reveal this
................ SuSE-FW-DROP-DEFAULT IN=eth0 OUT=eth1 SRC=192.168.56.140 DST=192.96.150.76 LEN=48 TOS=0x08 PREC=0x00 TTL=127 ID=774 DF PROTO=TCP SPT=1108 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
What else is needed to get Workstation1 to browse 192.96.150.76 ??
Regards Jannie Kruger
cheers, Stefan
participants (1)
-
Peer Stefan