On Tuesday 15 October 2002 3:59 pm, Sean Oh wrote: > Rimas, > > I tried what you said, but I stil can not access the server using ip > addresses of eth1 and eth2. 1. What does a traceroute show from one of the machines which is unable to contact the outside world ? 2. Can you run ethereal or similar on either eth0 or whichever of your external interfaces you expects the packets to exit from, to see whether traffic is getting routed / NATted appropriately ? 3. Try adding a LOG rule to your FORWARD chain to see what seems to be going through the firewal, and which route/s the packets are trying to take (FORWARD comes after the routing decision, so you should see both in= and out= interfaces shown in the log entries). Antony. -- If at first you don't succeed, destroy all the evidence that you tried.
