Hi Folks,

Heres the problem: I have a router in a company LAN set up to firewall my corporate segment. This router is running a Debian System and I want to get updates from security Debian org. Problem is: The external interface of my router (the one that points to the corporate LAN) is not accessible from outside the company LAN due to firewalling at the internet gateway. (This is wanted by the company) this way I cannot connect to security debian org, since replies are blocked at the internet gateway.
I need a workaround. I do have some other linux boxes in my segment that can connect to the internet, I tried to set one up as a router and have it forward the traffic to the debian server. But this server just sends ICMP_REDIRECT messages because it knows a shorter route. bummer. Anyone another idea or does anyone know how I can make the machine forward the traffic anyway, although there is a shorter route through my network?


the setup in ASCII art:

security.debian.org -> INTERNET -> INTRANET ->eth1-my router-eth0 <-> other machine

eth1 is not reachable from the Internet, so I want to redirect traffic from my router through the other machine, but all it does is sent ICMP_REDIRECT messages, because it knows a better route.

Ideas anyone? Probably port forwarding on the other machine?

Thanks for anything!

Steave.

I don't know about the ping... but I would try to forward anyway....

just "tell" the "proxy" linux to forward traffic from your host and masquerade. That should do the trick.