i need some basic help...

To: <debian-firewall@lists.debian.org>
Subject: i need some basic help...
From: "Federico Lazcano" <flazcano@hardtec.com.ar>
Date: Mon, 12 May 2003 09:17:59 -0300
Message-id: <[🔎] 9E9AC52457FA1D4FAA7C2572EBBD260F341A2D@dchardtec.hardtec.com.ar>

Hi, I have a problem with my linux box. 
Packets from the internal networks doesn't flow through the external if.
I had double checked everything, but it still doesn't work. I'm going
slightly mad.

INTIF="eth0"
INTNET="10.0.0.0/24"
EXTNET="192.168.10.0/24"
EXTIF="eth1"

[ Windoz ]10.0.0.10-----------10.0.0.1[ Linux
]192.168.10.222-------------192.168.10.1[ Internet ]

Routing table, I think it's OK

iguard:/home/radmin# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
192.168.10.0    0.0.0.0         255.255.255.0   U     0      0        0
eth1
10.0.0.0        0.0.0.0         255.0.0.0       U     0      0        0
eth0
0.0.0.0         192.168.10.1    0.0.0.0         UG    0      0        0
eth1

it's not the obvious thing
echo "1" > /proc/sys/net/ipv4/ip_forward

my firewall is wide open

Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

These are my if

iguard:/home/radmin# ifconfig
eth0      Link encap:Ethernet  HWaddr 00:04:75:7D:60:BA
          inet addr:10.0.0.1  Bcast:10.255.255.255  Mask:255.0.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:583 errors:0 dropped:0 overruns:0 frame:0
          TX packets:511 errors:0 dropped:0 overruns:0 carrier:78
          collisions:0 txqueuelen:100
          RX bytes:65138 (63.6 KiB)  TX bytes:79859 (77.9 KiB)
          Interrupt:5 Base address:0xdc00

eth1      Link encap:Ethernet  HWaddr 00:03:47:E9:AC:20
          inet addr:192.168.10.222  Bcast:192.168.10.255
Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:229 errors:0 dropped:0 overruns:0 frame:0
          TX packets:155 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:53860 (52.5 KiB)  TX bytes:17702 (17.2 KiB)
          Interrupt:12


and when i ping the linux box from the internal network...

C:\>ping 10.0.0.1

Haciendo ping a 10.0.0.1 con 32 bytes de datos:

Respuesta desde 10.0.0.1: bytes=32 tiempo<10ms TTL=255

It's OK

C:\>ping 10.0.0.1

Haciendo ping a 10.0.0.1 con 32 bytes de datos:

Respuesta desde 10.0.0.1: bytes=32 tiempo<10ms TTL=255

It's OK

but when i ping the gateway for my lan...it fails.

C:\>ping 192.168.10.1

Haciendo ping a 192.168.10.1 con 32 bytes de datos:

Tiempo de espera agotado para esta solicitud.


I can ping everywhere from the linux box.

Any clue?
Thanks in advance,
Federico

Reply to:

Follow-Ups:
- Re: i need some basic help...
  - From: Karl Hammar <karl@kalle.csb.ki.se>
- Re: i need some basic help...
  - From: Talon <megglestone@heritage.sd57.bc.ca>

Prev by Date: Re: Allowing outgoing traceroutes through NAT
Next by Date: Re: i need some basic help...
Previous by thread: Re: limiting download and upload streams
Next by thread: Re: i need some basic help...
Index(es):
- Date
- Thread