(Sorry for the double post I forgot the subject...) Hello all! I am struggling with what I think is an iptables issue... I have the following Net-to-Net VPN set up between to FC4 boxes: 192.168.20.0/24-->192.168.20.2(gw)-->$PUBLICIP1 ... $PUBLICIP2<--192.168.30.100(gw)<--192.168.30.0/24 With no firewall rules (iptables) entered, I can ping from 192.168.20.70 to 192.168.30.33 without any problem. However, I cannot get to outside internet addresses. If I add: iptables -t nat -A POSTROUTING --dst ! 192.168.30.0/24 -j SNAT --to-source $PUBLICIP1 to the 192.168.20.2(gw) machine's iptables, I can get out of the firewall to the internet from the 192.168.20.0/24 net, BUT MY VPN TRAFFIC DOES NOT REACH THE OTHER SIDE. So it seems that I can either have my VPN traffic between the nets OR be able to get to the internet (WWW, etc.) but I cannot have both. Anyone have any ideas??? Mark L. Wise, President Alpha II Service, Inc. 1312 Epworth Ave Reynoldsburg, Ohio 43068-2116 614 868-5033 (Phone) 614 868-1060 (Fax)
