ipsec nat and iptables

/dev/rob0 rob0 at gmx.co.uk
Fri Aug 26 15:03:39 CEST 2005


On Thursday 2005-August-25 10:27, Info DataCenter1.com wrote:
> Network A
> eth0=  conected to internet
> eth1= conected to private lan 192.168.1.1
>
> Network B
> eth0 conected to Internet
> eth1= conected to private lan 192.168.2.1
>
>  >From server A I'm able to ping 192.168.2.1 and viceversa but
>  > computers in the private lan can't see the other side
snip
> iptables -A FORWARD -i eth1 -o eth0
> iptables -A FORWARD -i eth0 -o eth1

These rules do nothing.

> iptables -P FORWARD DROP

And then your policy drops that traffic.
-- 
    mail to this address is discarded unless "/dev/rob0"
    or "not-spam" is in Subject: header



More information about the netfilter mailing list