thr3ads.net - Shorewall users - [Shorewall-users] nat problem [Mar 2002]

If this information is useful, please help other people find it:
Share via:

Ritesh Shah

2002-Mar-27 09:42 UTC

[Shorewall-users] nat problem

Hi all,

I am running shorewall 1.2.9 in redhat linux 7.1.
I am using the two-interfaces sample script.

In my nat file I have defined
cat /etc/shorewall/nat
#EXTERNAL       INTERFACE       INTERNAL        ALL
INTERFACES          LOCAL
203.199.37.158  eth0            172.16.1.16     yes   
                 yes

I am not able to ping or do ssh on this 203.199.37.158
ip. 
please let me know am I missing something.

[root@fw-linux /root]# shorewall show nat
Shorewall-1.2.9 NAT at fw-linux.host.com - Wed Mar 27
14:50:21 IST 2002

Chain PREROUTING (policy ACCEPT 3731K packets, 307M
bytes)
 pkts bytes target     prot opt in     out     source 
             destination

 3837  320K DNAT       all  --  *      *      
0.0.0.0/0            203.199.37.1
58     to:172.16.1.16

Chain POSTROUTING (policy ACCEPT 4599 packets, 248K
bytes)
 pkts bytes target     prot opt in     out     source 
             destination

 1273 91108 SNAT       all  --  *      *      
172.16.1.16          0.0.0.0/0
       to:203.199.37.158
14538  755K MASQUERADE  all  --  *      eth0   
172.16.0.0/16        0.0.0.0/0


Chain OUTPUT (policy ACCEPT 359 packets, 18882 bytes)
 pkts bytes target     prot opt in     out     source 
             destination

    0     0 DNAT       all  --  *      *      
0.0.0.0/0            203.199.37.1
58     to:172.16.1.16


Regards
Ritesh

__________________________________________________
Do You Yahoo!?
Yahoo! Movies - coverage of the 74th Academy Awards®
http://movies.yahoo.com/

Tom Eastep

2002-Mar-27 13:52 UTC

head link

[Shorewall-users] nat problem

Ritesh,
----- Original Message ----- 
From: "Ritesh Shah" <ribha2000@yahoo.com>
To: <shorewall-users@shorewall.net>
Sent: Wednesday, March 27, 2002 1:42 AM
Subject: [Shorewall-users] nat problem

> Hi all,
> 
> I am running shorewall 1.2.9 in redhat linux 7.1.
> I am using the two-interfaces sample script.
> 
> In my nat file I have defined
> cat /etc/shorewall/nat
> #EXTERNAL       INTERFACE       INTERNAL        ALL
> INTERFACES          LOCAL
> 203.199.37.158  eth0            172.16.1.16     yes   
>                  yes
> 
> I am not able to ping or do ssh on this 203.199.37.158
> ip. 
> please let me know am I missing something.
Where are you trying to test from? Inside or outside your firewall?

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net

Shorewall users - Mar 2002 - nat problem

[Shorewall-users] nat problem

[Shorewall-users] nat problem