<p dir="ltr">I've got a firewall/router running centos 7. I've disabled firewalld and enabled iptables instead while I learn the new firewalld. </p>
<p dir="ltr">The box has a WAN nic with 3 IPs. One for itself and the other 2 for other systems. I'm using nat and have pre and post routing rules to do the translation.</p>
<p dir="ltr">Now for the weirdness.</p>
<p dir="ltr">One works and the other doesn't.</p>
<p dir="ltr">The rules are identical except for IPs. The rest of the LAN is simply nat translated outbound. They all work. One server, the :2 on the nic can't get outside at all if one the static translate. The :1 machine is fine.</p>
<p dir="ltr">Doing a tcpdump shows ping to WAN gateway going out and returning to outside nic but it then gets lost in the redirect.</p>
<p dir="ltr">There are explicit forward rules for needed ports but I opened it to all ports for the troubled machine.</p>
<p dir="ltr">It's a new machine that passed a full memtest+ run.</p>
<p dir="ltr">I'm stumped.</p>