doubtless I have made a really stupid mistake here but I can't find it (my guess is that this will take Peter_Robb about six seconds to figure out).

My home office network has a router/firewall with three NICs (eth0=local network, eth1=apache, eth2=dsl). My router/firewall can ping the NICs on my work station and apache server but they can't ping the router back. My work station and apache server can ping each other. The apache server will serve pages to the work station. My webserver will serve pages from outside the network but browsers on the work station and apache server cannot browse the net. My IP table is below (what am I doing wrong)?


Router Table
dest gate genmask flags metric ref use interfac
10.xxx.10.0 **** 255.255.255.0 U 0 0 eth1 (apache server)
xx.92.149.0 **** 255.255.255.0 U 0 0 eth2 (in from internet)
10.xxx.1.0 **** 255.255.255.0 U 0 0 eth0 (local lan)
default dslxxxx-149-001. 0.0.0.0 UG 0 0 eth2 (out to internet

Not quite enuf info yet...
& thanx for the challenge ( I think)

That route table is for the firewall.
You mention smoothwall. Which version is it?

The workstations need their gateway setting to be the eth0 ip number.
Is there a working proxy in the system?
What dns servers are set in the workstations?

That's an awfully large netmask for your adsl interface...

Peter: thanks as always for your help. your questions pointed out two problems on my work station (it dual boots as window$ and linux). I had messed up the /etc/resolv.conf somehow. I must have done it when I was trying to configure a temporary dial up connection while switching dsl providers.

smoothwall version, etc.
--2.0 (beta patch 1 not installed yet)
--dns proxy server is running

gateways
[root@server root# ifconfig -a
eth0 Link encap:Ethernet HWaddr 00:50:04:22:41:1D
inet addr:10.xxx.10.2 Bcast:10.xxx.10.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:79439 errors:0 dropped:0 overruns:0 frame:0
TX packets:27214 errors:0 dropped:0 overruns:0 carrier:846
collisions:795 txqueuelen:100
RX bytes:29899343 (28.5 Mb) TX bytes:14555648 (13.8 Mb)
Interrupt:11 Base address:0xfc00

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:715 errors:0 dropped:0 overruns:0 frame:0
TX packets:715 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:218516 (213.3 Kb) TX bytes:218516 (213.3 Kb)

[root@server root]# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.xxx.10.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 10.xxx.10.1 0.0.0.0 UG 0 0 0 eth0
[root@server root]#

****************************************************
the dns server for the server

/etc/resolv.conf
nameserver: 10.xxx.1.1
****************************************************
large netmask

i saw that too. when i do route -n (instead of just route without an argument) it resolves to:
64.xxx.149.1