On Mon, 2011-04-11 at 15:04 +0100, Tony Rogers wrote: > I have a question for the iptables experts out there. > > I previously asked this question on this forum here. > > But no satisfactory answer was given. > > I have an iptables firewall, where *eth0* is the *internal interface*, > and _eth1 is the external interface_. eth1 is connected directly to the > internet, and this box is also a NAT router. > > I am seeing traffic sourced from external IP addresses on eth0 (internal > interface) - how can this be? (see logs below) Can you post the iptables rules that you are using, in particular the NAT part? What IP address range are you using on the internal network? Andy -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
