All, hardware: my router with three NICs. eth0 = local network (192.168.0.0/16) eth1 = ptp to adsl box eth2 = public network /27. Problem:
From a box (box67) on the public network, I ping an external address. Using tcpdump on eth2 I see the ICMP echo request. Using tcpdump on eth1 I see the ICMP echo request, and the echo reply from the external host. So far so good.
The echo reply never gets back to box67. I don't see it on eth2. So I disabled the firewall on the router, and put ACCEPT in INPUT, FORWARD and OUTPUT. I added some iptables log entries, expecting to see the echo reply somewhere. I can't catch it anywhere. I tried in PREROUTING, and I see nothing. So how can tcpdump see the incoming echo reply, but I can't catch it in PREROUTING? Who's eating my packets? /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org