Bonjour,
Après une mise à jour Leap 15.5 vers 15.6 j'ai de nouveau un souci de
partage de connexion internet sur les machines du réseau local.
* Le serveur se connecte aux autres machines et à internet
* Les autres machines "ping" le serveur et se "ping" entre elles.
* par contre lorsque je tente un ping free.fr sur une machineà la fin
de la ligne le ping affiche "Paquet filtré"
J'ai exécute en root :
yast routing ip-forwarding on
firewall-cmd --zone=external --add-masquerade --permanent
firewall-cmd --reload
J'utilise les zones external et internal
Je ne comprend pas ce qui cloche, merci de votre aide.
Jeff
abyss:/home/jeffr #firewall-cmd --list-all-zones block target:
%%REJECT%% ingress-priority: 0 egress-priority: 0
icmp-block-inversion: no interfaces: sources: services: ports:
protocols: forward: yes masquerade: no forward-ports:
source-ports: icmp-blocks: rich rules: dmz target: default
ingress-priority: 0 egress-priority: 0 icmp-block-inversion: no
interfaces: sources: services: ssh ports: protocols: forward: yes
masquerade: no forward-ports: source-ports: icmp-blocks: rich
rules: docker (active) target: ACCEPT ingress-priority: 0
egress-priority: 0 icmp-block-inversion: no interfaces: docker0
sources: services: ports: protocols: forward: no masquerade: no
forward-ports: source-ports: icmp-blocks: rich rules: drop target:
DROP ingress-priority: 0 egress-priority: 0 icmp-block-inversion: no
interfaces: sources: services: ports: protocols: forward: yes
masquerade: no forward-ports: source-ports: icmp-blocks: rich
rules: external (active) target: default ingress-priority: 0
egress-priority: 0 icmp-block-inversion: no interfaces: eth1
sources: services: apache2 apache2-ssl dhcp dns samba ssh vsftpd
ports: protocols: forward: no masquerade: yes forward-ports:
source-ports: icmp-blocks: rich rules: home target: default
ingress-priority: 0 egress-priority: 0 icmp-block-inversion: no
interfaces: sources: services: dhcpv6-client mdns samba-client ssh
ports: protocols: forward: yes masquerade: no forward-ports:
source-ports: icmp-blocks: rich rules: internal (active) target:
default ingress-priority: 0 egress-priority: 0 icmp-block-inversion:
no interfaces: eth0 sources: services: apache2 apache2-ssl dhcp
dhcpv6-client ftp http https mdns mysql nfs nfs3 ntp pulseaudio samba
samba-client samba-dc smtp squid ssh vsftpd ports: 9100/tcp 9100/udp
9100/sctp 9100/dccp 2049/tcp 111/tcp 2049/udp 111/udp 631/tcp 631/udp
protocols: forward: no masquerade: no forward-ports: source-ports:
icmp-blocks: rich rules: nm-shared target: ACCEPT ingress-priority:
0 egress-priority: 0 icmp-block-inversion: no interfaces: sources:
services: dhcp ssh ports: protocols: icmp ipv6-icmp forward: no
masquerade: no forward-ports: source-ports: icmp-blocks: rich
rules: rule priority="32767" reject public (default, active)
target: default ingress-priority: 0 egress-priority: 0
icmp-block-inversion: no interfaces: sources: services:
dhcpv6-client ports: protocols: forward: no masquerade: no
forward-ports: source-ports: icmp-blocks: rich rules: trusted
target: ACCEPT ingress-priority: 0 egress-priority: 0
icmp-block-inversion: no interfaces: sources: services: ports:
protocols: forward: yes masquerade: no forward-ports:
source-ports: icmp-blocks: rich rules: work target: default
ingress-priority: 0 egress-priority: 0 icmp-block-inversion: no
interfaces: sources: services: dhcpv6-client ssh ports: protocols:
forward: yes masquerade: no forward-ports: source-ports:
icmp-blocks: rich rules: abyss:/home/jeffr #
