You're welcome:) Please, forward this solution to public mail-list. I was tried to do it, but with no result (mail delivery error). Thanks! On Jan 23, 2008 12:08 AM, Nick Zeljkovic < nzeljkovic@site5.com> wrote: Excellent, that did it! Thank you very much. -- Best regards, Nick Zeljkovic From: Alexander R [mailto:aleromex@gmail.com] Sent: Tuesday, January 22, 2008 9:55 PM To: Nick Zeljkovic Subject: Re: [opensuse] NAT under 10.1 Add this line: iptables -t filter -A FORWARD -i eth0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT On Jan 22, 2008 11:42 PM, Nick Zeljkovic < nzeljkovic@site5.com> wrote: Yeah, that one, forgot to put > when I was writing this. # cat /proc/sys/net/ipv4/ip_forward 1 -- Best regards, Nick Zeljkovic From: Alexander R [mailto:aleromex@gmail.com] Sent: Tuesday, January 22, 2008 9:13 PM To: Nick Zeljkovic Subject: Re: [opensuse] NAT under 10.1 echo "1" > /proc/sys/net/ipv4/ip_forward ? On Jan 22, 2008 12:23 AM, Nick Zeljkovic <nzeljkovic@site5.com> wrote: Greets: I have two SuSE boxes, one 10.1 (with internet connection) and one 10.3 connected to a second private NIC (eth1). I've done the following: #echo "1" /proc/sys/net/ipv4/ip_forward # iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE # iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT # iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT And on client machine added default GW. Eth0 would be external interface and eth1 private. It looks like an issue with firewall not allowing or forwarding packets correctly, doing a: # tcpdump -i eth1 icmp While running a ping from client machine and it was received properly. -- Best regards, Nick Zeljkovic -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org