On 11/08/07 16:17, Bradley Kite wrote:
Linux machine has eth1, 192.168.1.50/30, connected to a router (192.168.1.49/30). Behind this router are many other networks/subnets. I'm trying to get the linux box to NAT all of them, not just addresses within this tiny /30 subnet (as is the case now).
This should not be a problem. Unless .... (See below.)
Hmm. The pre-routing couters are increasing, but that is all. When I ping from the router then the post-routing counters increase (because its directly connected).
Ok...
This was my assumption too but I must be missing something.
Could this by chance be a reverse path filtering issue? Is it possible that the firewall is not allowing the traffic from the non directly connected /30 to go through.
If you look at the counters in the filter:FORWARD chain do you see the traffic passing or is it even making it that far?
Grant. . . . - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
