creepy iptables problem.. please help
eight32 at gmail.com
Tue Jul 24 08:25:45 UTC 2007
> I have an fc6 box at hq as router / firewall.
> I have a cisco route at the remote site, with 2 ip address on the lan
> interface on in the 192.168.199.254/24 and 192.168.200.254/24 from
> server 192.168.200.240 i can ping google.com, but for 192.168.199.253
> my tracroute dies on the firewall..
> both ip ranges have the same iptables rules an routing .. why would
> the 192.168.199.253 not be able to access the internet ??
Looks like you're NATing on the .200 subnet and not the .199 subnet
What does your MASQUERADE iptable(s) look like?
Then you will know the truth, and the truth will set you free.
More information about the users