Topic: 6.0b3 Masquerading problem

[Patrick Dersjant]

Hello all,

migrated a 5.6 server/gateway box to 6.0b3 yesterday. Things went relatively smoothely, with the exception of the following most bugging issue:

Coming from the LAN, I cannot use anything except http/https to the Internet (which is configured via a static IP) - nntp, pop3, ssh all fail. Connections from and to the 6.0b3 box work alright, so to me it seems to be an iptables issue. Can anybody enlighten me as to which chains I should be looking for and what they should look like?

[Michael P. Soulier]

Patrick Dersjant wrote:
>
> Hello all,
>
> migrated a 5.6 server/gateway box to 6.0b3 yesterday. Things
> went relatively smoothely, with the exception of the
> following most bugging issue:

Please report all 6.0beta issues to smebugs@mitel.com.

Mike

[Patrick Dersjant]

Michael P. Soulier wrote:

> Please report all 6.0beta issues to smebugs@mitel.com.

Issue reported.

[Patrick Dersjant]

OK, the above problem was solved by reconfiguring my server. Thanks to Charlie for giving me some leads.

(Background for people finding this via a search:

I had eth1 configured to make a private network connection to the ADSL router on 10.0.0.0/24, whilst eth0 was connected to the 192.168.0.0/16 LAN. I then used a pptp connection for ADSL, which had the drawback that the routing wouldn't come up properly after losing the connection/rebooting the box, so a manual step was in order.
Therefor, and after trying PPPOE and failing to get it to work, I reconfigured the router to do the NAT itself and put it on the same private IP range, with a port forward on all ports to the SME machine (configured as server only). This works.

If you can't use this configuration (possibly because you have a 'dumb' ADSL modem that can't be reconfigured) your best bet is to go with the PPPOE, which failed for me. This is also probably the more secure option.)