I think there must be an SNAT/MASQUERADE for packets going out your router from DMZ Try also following thigs: install ROUTE extension from POM iptables -t mangle -A POSTROUTING -s 192.168.1.2 -p tcp --dport 25 -d ! 192.168.0.0/16 -j ROUTE --oif eth1 iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE Anyway, somehow it should work when the routes were made by iproute2 On Thu, 22 Jul 2004 17:08:14 -0700, Jens <jens@xxxxxxxxxxxxx> wrote: > On Thursday 22 July 2004 16:50, George Alexandru Dragoi wrote: > > Hehe, maybe it is this: > > iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE > > Well I wouldn't be surprised if it was something as stupid as that. I tried > your suggestion but no luck :( ..... but it could easily be something along > similar lines. I will have to think thru this a bit more. > > I will try and see if tcpdump can tell me what is happening but I sure wish > there was something easier available where you can follow the packet and see > exactly what is happening and where ..... > > > > Jens > _______________________________________________ > LARTC mailing list / LARTC@xxxxxxxxxxxxxxx > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
