![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
I'm relatively new to Linux and networking.
I have a server box with two NICs - one external, one internal and I am trying to make it work as a NAT/router/firewall box.
- The server has full access to the internet.
- All clients are able to ping the server.
- All clients are able to resolve names and ping internet sites like google.
- None of the clients are able to load anything from web pages using any browser.
- I also tried wget from a client and its able to establish a connection but not able to actually start downloading anything. It sits at the progress bar.
I tried Shorewall going through their basic two interface example.
I tried direct iptables config examples such as this: http://www.debian-administration.org/articles/23 but in either case the result was the same. I still cannot load anything from a web page although ping works anywhere.
I would appreciate any advice. Thanks.
Edit:
I've been working at this from time to time and I found something else that is interesting and hopefully might lead to solving the problem.
Apparently if the client boxes on the internal network startup with a working backup router as gateway and switch the gateway from the backup to the box in question then clients can access the internet just fine. I can restart the networking service, reconfigure my IP address, etc and they continue to work. Once I restart the client though they present the above symptoms again.
It seems like there is some authentication or some other initial setup that the server I'm trying to set is not able to do. My ISP doesn't require any authentication though. I read somewhere that it may be trying to default to ipv6. I tried turning it off but it didn't change anything.
I have a server box with two NICs - one external, one internal and I am trying to make it work as a NAT/router/firewall box.
- The server has full access to the internet.
- All clients are able to ping the server.
- All clients are able to resolve names and ping internet sites like google.
- None of the clients are able to load anything from web pages using any browser.
- I also tried wget from a client and its able to establish a connection but not able to actually start downloading anything. It sits at the progress bar.
I tried Shorewall going through their basic two interface example.
I tried direct iptables config examples such as this: http://www.debian-administration.org/articles/23 but in either case the result was the same. I still cannot load anything from a web page although ping works anywhere.
I would appreciate any advice. Thanks.
Edit:
I've been working at this from time to time and I found something else that is interesting and hopefully might lead to solving the problem.
Apparently if the client boxes on the internal network startup with a working backup router as gateway and switch the gateway from the backup to the box in question then clients can access the internet just fine. I can restart the networking service, reconfigure my IP address, etc and they continue to work. Once I restart the client though they present the above symptoms again.
It seems like there is some authentication or some other initial setup that the server I'm trying to set is not able to do. My ISP doesn't require any authentication though. I read somewhere that it may be trying to default to ipv6. I tried turning it off but it didn't change anything.