Вот мои правила iptables. Но с локальных компов не пускает в инет. Хотя сейчас должен пускать с этого 192.168.250.10. Что я делаю не так? Внутренний интерфейс 192.168.250.30 и внешний 192.168.3.26 пингуются нормально, а дальше DROP

Table: filter
Chain FORWARD (policy DROP)
target prot opt source destination
REJECT tcp -- 10.0.0.0/24 0.0.0.0/0 tcp dpts:8000:8888 reject-with icmp-port-unreachable
REJECT tcp -- 10.0.0.0/24 0.0.0.0/0 tcp dpts:2831:3128 reject-with icmp-port-unreachable
free all -- 0.0.0.0/0 192.168.250.10
global all -- 0.0.0.0/0 192.168.250.10
city all -- 0.0.0.0/0 192.168.250.10

Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain city (1 references)
target prot opt source destination
city_ all -- 0.0.0.0/0 0.0.0.0/0

Chain city_ (1 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 192.168.250.1
ACCEPT all -- 0.0.0.0/0 192.168.250.2
ACCEPT all -- 0.0.0.0/0 192.168.250.3
ACCEPT all -- 0.0.0.0/0 192.168.250.4
ACCEPT all -- 0.0.0.0/0 192.168.250.5
ACCEPT all -- 0.0.0.0/0 192.168.250.6
ACCEPT all -- 0.0.0.0/0 192.168.250.7
ACCEPT all -- 0.0.0.0/0 192.168.250.8
ACCEPT all -- 0.0.0.0/0 192.168.250.9
ACCEPT all -- 0.0.0.0/0 192.168.250.10
ACCEPT all -- 0.0.0.0/0 192.168.250.11
ACCEPT all -- 0.0.0.0/0 192.168.250.12
ACCEPT all -- 0.0.0.0/0 192.168.250.13
ACCEPT all -- 0.0.0.0/0 192.168.250.14
ACCEPT all -- 0.0.0.0/0 192.168.250.15
ACCEPT all -- 0.0.0.0/0 192.168.250.17
ACCEPT all -- 0.0.0.0/0 192.168.250.16

Chain free (1 references)
target prot opt source destination
free_ all -- 192.168.3.0/24 0.0.0.0/0
free_ all -- 195.151.182.182 0.0.0.0/0
free_ all -- 82.195.27.0/24 0.0.0.0/0
free_ all -- 195.151.30.0/24 0.0.0.0/0

Chain free_ (4 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 192.168.250.1
ACCEPT all -- 0.0.0.0/0 192.168.250.2
ACCEPT all -- 0.0.0.0/0 192.168.250.3
ACCEPT all -- 0.0.0.0/0 192.168.250.4
ACCEPT all -- 0.0.0.0/0 192.168.250.5
ACCEPT all -- 0.0.0.0/0 192.168.250.6
ACCEPT all -- 0.0.0.0/0 192.168.250.7
ACCEPT all -- 0.0.0.0/0 192.168.250.8
ACCEPT all -- 0.0.0.0/0 192.168.250.9
ACCEPT all -- 0.0.0.0/0 192.168.250.10
ACCEPT all -- 0.0.0.0/0 192.168.250.11
ACCEPT all -- 0.0.0.0/0 192.168.250.12
ACCEPT all -- 0.0.0.0/0 192.168.250.13
ACCEPT all -- 0.0.0.0/0 192.168.250.14
ACCEPT all -- 0.0.0.0/0 192.168.250.15
ACCEPT all -- 0.0.0.0/0 192.168.250.17
ACCEPT all -- 0.0.0.0/0 192.168.250.16

Chain global (1 references)
target prot opt source destination
global_ all -- 0.0.0.0/0 0.0.0.0/0

Chain global_ (1 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 192.168.250.1
ACCEPT all -- 0.0.0.0/0 192.168.250.2
ACCEPT all -- 0.0.0.0/0 192.168.250.3
ACCEPT all -- 0.0.0.0/0 192.168.250.4
ACCEPT all -- 0.0.0.0/0 192.168.250.5
ACCEPT all -- 0.0.0.0/0 192.168.250.6
ACCEPT all -- 0.0.0.0/0 192.168.250.7
ACCEPT all -- 0.0.0.0/0 192.168.250.8
ACCEPT all -- 0.0.0.0/0 192.168.250.9
ACCEPT all -- 0.0.0.0/0 192.168.250.10
ACCEPT all -- 0.0.0.0/0 192.168.250.11
ACCEPT all -- 0.0.0.0/0 192.168.250.12
ACCEPT all -- 0.0.0.0/0 192.168.250.13
ACCEPT all -- 0.0.0.0/0 192.168.250.14
ACCEPT all -- 0.0.0.0/0 192.168.250.15
ACCEPT all -- 0.0.0.0/0 192.168.250.17
ACCEPT all -- 0.0.0.0/0 192.168.250.16

Table: mangle
Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain POSTROUTING (policy ACCEPT)
target prot opt source destination

Chain PREROUTING (policy ACCEPT)
target prot opt source destination

Table: nat
Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain POSTROUTING (policy ACCEPT)
target prot opt source destination

Chain PREROUTING (policy ACCEPT)
target prot opt source destination

• проблема с iptables,Vaso Petrovich, 09:35 , 05-Дек-06
  • проблема с iptables,Папа Карло, 17:31 , 18-Окт-10

а маскарад за вас папа крло сделать должен?

> а маскарад за вас папа крло сделать должен?

Извините у меня мало времени