On Mon, Jan 07, 2002 at 11:41:07PM -0600, madhombre wrote:
> all I can say is SOLW DOWN!!!
> 
> I have only been at this for a few months!!! *lol*
> 
> Thanks for the help
> 
> I will try to be as clear as I can
> 
> ppp0 is jons.dotnet.com, 216.127.193.160
> tlp0 is dynamic - a.b.c.d - I really can't be specific than that!
> tlp0 is the local network 192.168.1.1
> 
> Here is what I want to do.
> 
> IP ADDRESS IS RELEVENT!!!!
> 
> OUTBOUND
> 
> 	      port 25						ppp0
> mail server ----------------------------- gateway (actually same machine) -------------------------------------------- internet
> 
> 	           any port BUT 25		tlp1
> any  machine ------------------------------------ gateway --------------------------- internet
> 
> 	any port			tlp0
> any -------------------------- gateway ------------------------------any local
> 
> 
> INBOUND 
> 	
> 	ppp0	
> any ------------------------ gateway 
> 
> 
> This is all I want to do, it seems very simple!!!!
> 
> That is all, my firewall will block the rest
> 
> So attached is my ipnat.conf, right now I can see out but not in. Also no redirects are done. I have also added my firewall file, but I tested it and it seems fine
> 
> I don't have the time and also the genius to write a util to do this!
> 
> So will ipnat do what I need?
> What can it do which I could use as a work around?
> 
> Why can't I ping inbound to the jons.dotnet.com domain? 

Did you look at log files, to see which rule is blocking packets ?
Did you try removing all ipf rules, and adding them back one by one until
things break ?

-- 
Manuel Bouyer <bouyer@antioche.eu.org>
--