From mboxrd@z Thu Jan 1 00:00:00 1970 From: "=?ISO-8859-1?Q?Andr=E9_Serralheiro?=" Subject: Re: a little help on iptables Date: Thu, 7 Sep 2006 17:15:39 +0200 Message-ID: References: <200609071640.33138.fluca1978@infinito.it> Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <200609071640.33138.fluca1978@infinito.it> Content-Disposition: inline Sender: linux-admin-owner@vger.kernel.org List-Id: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: Luca Ferrari Cc: linux-admin Hi Luca It could be easier to give you a hand if you provides us with the output of: ifconfig; route -n and iptables -L (and iptables -L -t nat) you call always try to execute the following: route add default gateway x.x.x.x netmask y.y.y.y ethX for the default gateway and: route add -net z.z.z.z netmask k.k.k.k dev ethY for the other route Hope it helps Andre Serralheiro On 9/7/06, Luca Ferrari wrote: > Hi all, > this is the situation: I've got a firewall double-homed, with a NIC assigned > to a public IP and the other to the LAN network. Until now I've used the > external NIC as default gateway, since my router has a public address too. > Now I'd like to use another router on the lan as default, leaving untouched > the external interface (since the firewall must be accessible from the > outside world). So I've changed the default gw to the lan one, and it works, > but I get the external ip unreachable, and I think it's because it does not > know the gateway interface. So, how can I specify for the external interface > the gateway to use? If I try to do it thru the route command it replies sayng > that the network is unreachable. Any help? > Thanks, > Luca > - > To unsubscribe from this list: send the line "unsubscribe linux-admin" in > the body of a message to majordomo@vger.kernel.org > More majordomo info at http://vger.kernel.org/majordomo-info.html >