Anthony R. Vallario wrote: > Sure enough, there are logged events > from when one of the LAN pc's was blocked from going to say yahoo, adobe > or google. Weird thing is, it's random. Ports are random to.I can't make > heads or tales out of a pattern or reason why. So why on earth would a > nat firewall with no outgoing drop rules all of a sudden block these lan > pc's? Check the DROP log messages -- is the IN= interface your LAN interface or your WAN interface? If it is the WAN interface, check your cabling to be sure that you haven't bridged the LAN and WAN sides of your firewall. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@xxxxxxxxxxxxx PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Attachment:
signature.asc
Description: OpenPGP digital signature
