search for: wanip

...nternal LAN) and eth1 (Internet). This box is configured as a firewall, using iptables (1.3.7). My kernel is 2.6.20.1. I do SNAT for the lan clients to the Internet, and all is working fine; but I have big problems with DNAT: I have these lines: .... ..... iptables -A PREROUTING -t nat -i eth1 -d $WANIP -p tcp --dport 80 -j DNAT --to 10.0.0.2:80 iptables -A FORWARD -i eth1 -p tcp --dport 80 -j ACCEPT ..... ..... iptables -A INPUT -i eth1 -j DROP-AND-LOG ..... Ok, a simple and classical DNAT to an internal web server. Now, the problem: the majority of packets get correctly in the PREROUTING chain...

...em, 24seconds 14. billsec: Total time call is up, 20seconds 15. disposition: What happened to the call: ANSWERED 16. amaflags: What flags to use: DOCUMENTATION In Sip.conf I have: deny=0.0.0.0/0.0.0.0 permit=192.168.1.201/255.255.255.255 All the other local phones here <snip> One WanIP address Thank you, Gary Kuznitz