Ranjeet Shetye wrote:
If your webserver is behind the firewall and people are connecting to it
from the Internet, it means that you are running Destination NAT (DNAT).
So, your source IP for incoming packets should not be affected since you
are doing DNAT only. On the other hand, if you are also doing SNAT for
traffic coming in then you might run into the problem you are running
into. Check your rules. Maybe you need tighter rules. i.e. bind your
DNAT / SNAT rules to specific interfaces ?
Can't help more without details.
HTH
yeah, any snat rules would be suspect. and also a misconfigured
postrouting rule.
