The strange thing is that this problem occurs only with the rule where hosts are defined with mac address.... the hosts defined with ip address works correctly. And another very strange thing is that until few days ago, works correctly also the rules defined with mac address. Next, i have installed squid proxy server and modified the firewall script in order to grant direct access to outgoing http connection only for 3 hosts (those defined with mac address)...... and boom.... i have this problem. ---------- Initial Header ----------- >From : netfilter-owner@xxxxxxxxxxxxxxx To : "x86ever" x86ever@xxxxxxxxx Cc : "netfilter" netfilter@xxxxxxxxxxxxxxx Date : Sun, 3 Aug 2008 13:55:49 +0200 Subject : Re: Help me... please > I have verified but the mac address is the same. > > > ---------- Initial Header ----------- > > From : "Anatoly Muliarski" x86ever@xxxxxxxxx > To : "linuxmc@xxxxxxxxx" linuxmc@xxxxxxxxx > Cc : > Date : Sun, 3 Aug 2008 10:19:38 +0300 > Subject : Re: Help me... please > > > > > > > > > 2008/8/2, linuxmc@xxxxxxxxx <linuxmc@xxxxxxxxx>: > > > I have tried to remove de "-m state --state" but nothing change. > > > I have attached the section of the firewall log file with the defect. Look to the first and to the last line..... > > > > > > > Try to check the correspondence between ARP addresses stated in your > > RULE_9 and the desired IPs to pass through. Hint: arp -a -n on the > > router. Possibly 192.168.1.54's MAC is DIFFERENT than those in your > > RULE_9. > > > > -- > > Best regards > > Anatoly Muliarski > > > > -- > To unsubscribe from this list: send the line "unsubscribe netfilter" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html > -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
