I seem to have ended up arguing on the internet, which wasn't really
my idea :-(.
Right, let's go through this again.
Internet--------Firewall------Server 1
|
----------Server 5
I'm working on the firewall, a linux box. The firewall has addresses
10.72.2.1, 10.72.3.1 and 10.69.2.3, which goes off to the internet.
Server 1 has IP 10.72.2.3 and default gateway 10.72.2.1. Server 5 has
IP 10.72.3.3 and default gateway 10.72.3.1.
Server 1 can see server 5. Server 1 can see the internet. Server 5 can
see server 1. Server 5 can see the internet.. There are absolutely no
routing problems whatsoever: Look! Here they are pinging each other!
[root@server5 ~]# ping 10.72.2.3
PING 10.72.2.3 (10.72.2.3) 56(84) bytes of data.
64 bytes from 10.72.2.3: icmp_seq=1 ttl=63 time=2.83 ms
64 bytes from 10.72.2.3: icmp_seq=2 ttl=63 time=1.14 ms
64 bytes from 10.72.2.3: icmp_seq=3 ttl=63 time=1.48 ms
--- 10.72.2.3 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 1.144/1.818/2.830/0.729 ms
[root@server5 ~]# traceroute 10.72.2.3
traceroute to 10.72.2.3 (10.72.2.3), 30 hops max, 40 byte packets
1 10.72.3.1 (10.72.3.1) 4.367 ms 1.212 ms 5.749 ms
2 10.72.2.3 (10.72.2.3) 5.196 ms 4.715 ms 5.163 ms
[root@server5 ~]#
The reason I'm on the netfilter list, is because I'm trying to use the
firewall linux box as a firewall. Like I say, with my rule sets,
connections don't work from one server to the other for http traffic.
See my original email.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
