* M. Neubert;
so everything is logged ( the second option is secure if the machine is attached to Internet)
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="yes" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="yes"
Why? If the packet is accepted then it's ok. The counter's in PREROUTING/forward_ext increments permanently, so forwarding works but nothing goes realy out of eth0. I think, the INPUT/OUTPUT chain should't affected.
My initial thought was to see if the packet is passing thru the chains since you mention ping is reachable and http samba works then I do not know. I may have missed it have you tried to see the traffic via iptraf, tcpdump, ethereal etc. If not you may want to try one them. If you already did and they do not appear weird One thing with FW_SECURITY is if you enable it once AFAIK you can only bring to the initial stage by rebooting. That can be the cause. -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx