No, it is my fault, I forgot to add " reply to all " sorry people . I mistyped eth1 ( there sholud be eth2 ) in first post. iptables -A FORWARD -i eth0 -o eth2 -j ACCEPT iptables -A FORWARD -i eth2 -o eth0 -j ACCEPT echo 1 > /proc/sys/net/ipv4/ip_forward does not ( I still do not know why ) forward packets from eth2 to eth1 and vica versa. And yes, I have implemented only above two rules Regards On 4/21/07, Marc Haber <mh+netfilter@xxxxxxxxxxxx> wrote:
Did you take this correspondence off-list deliberately by answering in private? On Sat, Apr 21, 2007 at 02:56:09PM +0200, crux crux wrote: > 2: eth0: <BROADCAST,MULTICAST,UP,10000> mtu 1500 qdisc pfifo_fast qlen 1000 > link/ether 00:30:05:0d:db:b4 brd ff:ff:ff:ff:ff:ff > inet 192.168.1.1/24 brd 192.168.1.255 scope global eth0 > inet6 fe80::230:5ff:fe0d:dbb4/64 scope link > valid_lft forever preferred_lft forever > 3: eth1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000 > link/ether 00:02:b3:8c:d2:eb brd ff:ff:ff:ff:ff:ff > 4: eth2: <BROADCAST,MULTICAST,UP,10000> mtu 1500 qdisc pfifo_fast qlen 1000 > link/ether 00:02:b3:f0:37:05 brd ff:ff:ff:ff:ff:ff > inet 10.1.1.1/24 brd 10.1.1.255 scope global eth2 > inet6 fe80::202:b3ff:fef0:3705/64 scope link > valid_lft forever preferred_lft forever You have configured eth0 and eth2, while allowing traffic to flow between eth0 and eth1 in the firewall config. Presumably, you have a DROP policy in place, and traffic to and from eth2 is blocked. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190
