Ok, i've tried to use it because it seems that firewall don't understand
the packet coming from old line (without rule)....
the result i great!!!
Now all works, I have setup the rule for all the two ethernet card of
the internet lines.
echo 0 > /proc/sys/net/ipv4/conf/eth1/rp_filter
echo 0 > /proc/sys/net/ipv4/conf/eth2/rp_filter
Thanks a lot!!
Matt ha scritto:
Sorry I missed this part:
What is the meaning of: echo 0 > /proc/sys/net/ipv4/conf/eth1/rp_filter
I think it disables the reverse path filter for that interface (eth1). Now you might ask, what is the reverse path filter? And I don't know! Apparently it does this:
# prevent incoming packets on masqueraded connections from being dropped
# as "martians" due to the destination address being translated before the
# rp_filter check is performed
However, when I commented out the line it made no difference so I've left it there for people to comment back in if they find they have problems as described.
Regards,
Matt.
