Forgive me for this elementary post as I am just learning to setup my firewall. Using V4.0 of software under 30 day eval.
My problem is this: Users on private net can get an address from DHCP but can not use HTTP to surf the net - It does not look as if DNS requests are going out. With Masquerading on, I know that I need some filter rules to allow a flow of traffic.
Here is my layout so far:
1. I have a user private net on eth1 as 198.168.40.X
2. eth2 is my NIC out via a router to a T1 line.
3. eth0 is another private net (that I will setup later) so ignore it for now.
3. I configured DHCP for subnet on eth1. It gives out addresses to boxes on this subnet just fine.
4. I setup the DNS proxy for eth1_lan listening on eth1 with forwards to my ISP's 2 DNS servers.
5. I setup HTTP proxy for eth1_lan (allowing HTTP service for now) in standard mode (tried transparent mode also) both do not work! With standard mode I set browser to address of subnet NIC and port of 8080.
3. I setup Masquerading for eth1_network on interface eth2.
4. I setup a filter rule to allow eth1_network, service DNS, to server eth2_network, any (I also tried eth2_nic). Second rules for same except service was HTTP.
5. If I disconnect the T1 router cable from eth2 NIC and connect it to a Pc with W2K and set IP address (static), mask, and gateway provided by my ISP, the connection works and I can surf the net from that PC. So I know my connection works. These same settings for the PC to work were configuration for the eth2 interface under the networks menu.
What kind of filter rules am I possibly missing?
I am sure that being a Newbie, that I am overlooking something simple.
Thanks in advance.
This thread was automatically locked due to age.
