On 07/13/2008 03:24 AM, Kaare Rasmussen wrote:
I wonder why the firewall drops the packages from 192.168.1.10 to 10.8.0.2 giving that buth eth0 and tun0 are supposed to be on the inner side.
Jul 12 21:20:27 server kernel: SFW2-FWDint-DROP-DEFLT IN=eth0 OUT=tun0 SRC=192.168.1.10 DST=10.8.0.2 LEN=84 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=63343 SEQ=1
But perhaps it's better to put it away and look at it tomorrow when fresh.
Perhaps, this is the setting you need. # 23.) # Allow same class routing per default? # REQUIRES: FW_ROUTE # # Do you want to allow routing between interfaces of the same class # (e.g. between all internet interfaces, or all internal network interfaces) # be default (so without the need setting up FW_FORWARD definitions)? # # Choice: "yes" or "no", if not set defaults to "no" # # Defaults to "no" if not set # FW_ALLOW_CLASS_ROUTING="" Try setting this to yes. -- Joe Morris Registered Linux user 231871 running openSUSE 10.3 x86_64 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org