On Monday, October 1, 2018, 5:50:59 PM GMT+2, Tom Eastep <teas...@shorewall.net> wrote: > For this type of error, I really need to see the .start file itself.
I'll copy the .start file ASAP. In the meantime, I removed the following lines from the snat file: SNAT($IF_ISP3_IP) $IF_LAN $IF_ISP3 SNAT($IF_ISP2_IP) $IF_LAN $IF_ISP2 SNAT($IF_ISP1_IP) $IF_LAN $IF_ISP1 SNAT($IF_ISP3_IP) $IF_DMZ $IF_ISP3 SNAT($IF_ISP2_IP) $IF_DMZ $IF_ISP2 SNAT($IF_ISP1_IP) $IF_DMZ $IF_ISP1 I don't get any errors, and I see that most traffic is working as expected. However, there are some issues. For instance, I'm trying to access 87.248.114.11 on port 443 from LAN host with IP addr. 10.215.144.48. I can see the traffic going out and in through ppp2, but the browser client in the LAN host cannot view the data (it seems to try to receive data all the time). Other sites work fine. I tested the failing site with other means at the same time and several times. It always "works". So there's something wrong with the way I configured shorewall. Here's the shorewall dump while making the connection: https://drive.google.com/file/d/1R0smnmOIL_RthEQtcAp79zWMklu8MAaM/view?usp=sharing Thanks, Vieri _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
