April 1, 2007 at 6:39 am #45249
I said to you to not forget to accept the traffic that is incoming from the WAN.
You could solve by including the rule
ACCEPT all opt — in ETH01 out * 0.0.0.0/0 -> 0.0.0.0/0
where ETH01 is the interface that connects your LAN to Internet.