Firewall/NAT

[My network setup:]

Hi there

I have a monowall in place with a WAN and LAN interface.

WAN = dhcp
LAN = 192.168.2.1/24
static route LAN: 192.168.40.0/24 --> 192.168.2.69

My network setup:

HostA Linux:
eth0: 192.168.2.69/24
eth1: 192.168.40.11/24
default gw: 192.168.2.1
ip_forwarding=1

HostB Linux:
eth0: 192.168.40.51/24
default gw: 192.168.40.11

My problem:

Ping from HostA to 8.8.8.8 through M0n0wall works fine.
Ping from HostB to 8.8.8.8 through HostA and M0n0wall doesn't work.
Ping from M0n0wall to HostB through HostA works fine.

I see the pings from HostB on the HostA-eth0 interface and on the M0n0wall Firewall log on LAN side which are sent to 8.8.8.8 but there are no response packets shown on HostA-eth0. I'm able to ping from M0n0wall HostB (192.168.40.51) through HostA (192.168.2.69) because I've configured a static route on the M0n0wall (N:192.168.40.0/24 --> G:192.168.2.69).

So, the network behind HostA-eth1 (192.168.40.0/24) does not get any icmp response from 8.8.8.8 when initiated on HostB. Is there something do consider on M0n0wall to do such setup?

Realy strange for me. This should work IMHO.


Please help
bb

On HostB eth0, what it the other end of the ethernet cable plugged into?

@all

It was only an additional firewall rule needed ;-)
Source 192.168.40.0/24 - Dest any - Proto any.

that's it

Haven't seen this piece of cake ;-)

bb