I successfully upgraded openSUSE 15.5 to openSUSE 15.6
But now I can no longer use this machine as router /nat / firewall between networks.
I configured a long time ago the following:
PC1, PC2 in network A (internal)
Linux PC with one network card in network A and a second card in network B.
Network B is behind my internet router and will give access to the internet.
The Linux PC will also act as a firewall against network B.
Network card eth0 will is attached to network A and eth1 to network B.
Everything worked until I upgraded to the new version.
I already checked:
- setting of firewall zone for the network cards in yast (the eth0 had been in the external zone but I changed it to the internal zone)
- firewallD settings - I still have the old settings (see also below) and masquerade in external zone is active.
- sysctl parameter net.ipv4.ip_forward = 1 is set
- my old rules are present
pv4 filter FORWARD 10 -i eth0 -o eth1 -j ACCEPT
ipv4 filter FORWARD 10 -i eth0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
ipv4 nat POSTROUTING 10 -o eth1 -j MASQUERADE - several reboots done.
- deactivated and reactivated masquerade setting
- tried setting a policy (internet tip) - without success
- network ist configured using wicked service
The “router” / Linux PC can reach both networks.
Just the PC1, PC2 from the internal network can not reach the internet.
But they can ping and login to the Linux PC.
Has anyone an idea, what I can check to solve my problem ?
I can not see the error.