Hi Folks, I have a kind of standard Network Setup - Firewall with 5 Network Devices, 1 Internet (ADSL Modem / pppOE), 1 WLan and 3x100MBit. Now - my Internet connection is running on the Standard ADSL Modem - with a Public IP. Call it 221.141.215.253 (Fake IP) ... On Interface 0 - I have my Internal LAN 10.0.0.0/24 On Interface 1 - I have my Gameserver Lan: 172.16.3.0/29 On Interface 2 - I have my Service-Lan: 172.16.2.0/29 (All IP Addresses changed) The Problem I now have is - whenever a Game-Server runs (UT3 especially), the UT3 Server Browser provides me with the Public IP-Address of my PPP Connection Interface - e.g. 221.141.215.253, I can''t connect it from any internal Network. Now - from the outside world - accessing it is quite easy - as I setup a DNAT rule - to forward the appropriate communication requests to the Game-Server: # UT3 Port Forwarding DNAT:$LOG world game:172.16.3.2 udp 7777,13000,6500 If I try to access this IP from Internal LAN - I time out. E.g. I can''t access my own game-server, as the Public IP I get returned is on the World-Interface, thus the DNAT rule does not apply. Pinging this IP works of course, but using this DNAT rule does not work if coming from another interface - especially when trying to perform an access on the Public IP. Anyone could provide me a Hint on how to get this working ? Thx Joerg -- ------------------------------------------------------------------------ | Joerg Mertin : smurphy@solsys.org (Home)| | in Forchheim/Germany : smurphy@linux.de (Alt1)| | Stardust''s LiNUX System : | | Web: http://www.solsys.org | ------------------------------------------------------------------------ PGP Fingerprint: AF0F FB75 997B 025F 4538 5AD6 9888 5D97 170B 8B7A ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
On Mon, Dec 31, 2007 at 01:19:04PM +0100, Joerg Mertin wrote:> Now - my Internet connection is running on the Standard ADSL Modem - > with a Public IP. Call it 221.141.215.253 (Fake IP) ... > > On Interface 0 - I have my Internal LAN 10.0.0.0/24 > On Interface 1 - I have my Gameserver Lan: 172.16.3.0/29 > On Interface 2 - I have my Service-Lan: 172.16.2.0/29 > (All IP Addresses changed) > > The Problem I now have is - whenever a Game-Server runs (UT3 > especially), the UT3 Server Browser provides me with the Public > IP-Address of my PPP Connection Interface - e.g. 221.141.215.253, I > can''t connect it from any internal Network.Sounds like a variation on the theme of FAQ 2. ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Andrew Suffield wrote:> On Mon, Dec 31, 2007 at 01:19:04PM +0100, Joerg Mertin wrote:>> >> The Problem I now have is - whenever a Game-Server runs (UT3 >> especially), the UT3 Server Browser provides me with the Public >> IP-Address of my PPP Connection Interface - e.g. 221.141.215.253, I >> can''t connect it from any internal Network. > > Sounds like a variation on the theme of FAQ 2.In particular, FAQ 2b. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Sorry, Mea Culpa... I had checked the FAQ, but didn''t make any relation to my issue by reading it ... I''ll check it as soon as I''m back home ... Hanging out in Paris right now. Cheers Joerg <quote who="Tom Eastep">> Andrew Suffield wrote: >> On Mon, Dec 31, 2007 at 01:19:04PM +0100, Joerg Mertin wrote: > >>> >>> The Problem I now have is - whenever a Game-Server runs (UT3 >>> especially), the UT3 Server Browser provides me with the Public >>> IP-Address of my PPP Connection Interface - e.g. 221.141.215.253, I >>> can''t connect it from any internal Network. >> >> Sounds like a variation on the theme of FAQ 2. > > In particular, FAQ 2b. > > -Tom > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Microsoft > Defy all challenges. Microsoft(R) Visual Studio 2005. > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/_______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >-- ------------------------------------------------------------------------ | Joerg Mertin : smurphy@solsys.org (Home)| | in Forchheim/Germany : smurphy@linux.de (Alt1)| | Stardust''s LiNUX System : | | Web: http://www.solsys.org | ------------------------------------------------------------------------ PGP Fingerprint: AF0F FB75 997B 025F 4538 5AD6 9888 5D97 170B 8B7A ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
On Wed, Jan 02, 2008 at 05:37:00PM +0100, Joerg Mertin wrote:> Mea Culpa... I had checked the FAQ, but didn''t make any relation to my > issue by reading it ...It''s not exactly the same question, but it''s almost certainly the same basic problem, and the solution will look more or less the same. ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/