Firewall segundos depois de ligado , não abre mais paginas!

daniel2099
(usa FreeBSD)

Enviado em 19/07/2016 - 08:46h

Bom dia pessoal,

Minha situação é o seguinte, montei dois firewalls da seguinte forma.


Firewall 01 ( Principal)

################# REDE WAN #################
allow-hotplug eth0
iface eth0 inet static
address xxx.xx.148.2
netmask 255.255.255.252
network xxx.xx.148.0
broadcast xxx.xx.148.3
gateway xxx.xx.148.1

###############################################

################### REDE xxx ##################
allow-hotplug eth1
iface eth1 inet static
address xxx.xx.36.1
netmask 255.255.255.0
network xxx.xx.36.0
broadcast xxx.xx.36.255
#gateway xxx.xx.148.2
###############################################

Configuração Filter/NAT

*nat
:PREROUTING ACCEPT [1206:72288]
:INPUT ACCEPT [205:29791]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT

*filter
:INPUT ACCEPT [10xx:10xx76]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [425:61588]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
COMMIT

Firewall 02 ( proxy/dhcp)

# Interface responsável para repassar internet para rede interna

allow-hotplug eth0
iface eth0 inet static
address 192.168.10.254
netmask 255.255.255.0
network 192.168.10.0
broadcast 192.168.10.255

# Interface de entrada de internet
allow-hotplug eth2
iface eth2 inet static
address xxx.xx.36.2
netmask 255.255.255.0
network xxx.xx.36.0
broadcast xxx.xx.36.255
gateway xxx.xx.36.1

Configuração Filter/NAT

*nat
:PREROUTING ACCEPT [1206:72288]
:INPUT ACCEPT [205:29791]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING -o eth2 -j MASQUERADE
COMMIT

*filter
:INPUT ACCEPT [10xx:10xx76]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [425:61588]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
COMMIT

Agradeço desde já aos colegas