Unfortunately I cannot upload a .txt file. So this is getting a long post.
root@home ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 00:e6:f1:68:08:0c brd ff:ff:ff:ff:ff:ff
inet 10.5.2.1/24 brd 10.5.2.255 scope global noprefixroute enp2s0
valid_lft forever preferred_lft forever
inet6 fe80::2e6:f1ff:fe68:80c/64 scope link
valid_lft forever preferred_lft forever
3: enp3s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 00:e6:f1:68:08:0d brd ff:ff:ff:ff:ff:ff
inet6 fe80::2e6:f1ff:fe68:80d/64 scope link
valid_lft forever preferred_lft forever
4: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1492 qdisc fq_codel state UNKNOWN group default qlen 3
link/ppp
inet 79.152.5.240 peer 192.168.144.1/32 scope global ppp0
valid_lft forever preferred_lft forever
inet6 2a02:9003:a4:5e31:3778:dbd7:df80:6d1d/64 scope global noprefixroute
valid_lft forever preferred_lft forever
inet6 fe80::bdde:8467:ab35:aaa peer fe80::9ecc:83ff:fece:1cca/64 scope link noprefixroute
valid_lft forever preferred_lft forever
inet6 fe80::a5be:4c45:1a82:d525/64 scope link noprefixroute
valid_lft forever preferred_lft forever
[root@home ~]# ip l
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:e6:f1:68:08:0c brd ff:ff:ff:ff:ff:ff
3: enp3s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000
link/ether 00:e6:f1:68:08:0d brd ff:ff:ff:ff:ff:ff
4: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1492 qdisc fq_codel state UNKNOWN mode DEFAULT group default qlen 3
link/ppp
root@home ~]# ip r
default via 192.168.144.1 dev ppp0 proto static metric 460
10.5.2.0/24 dev enp2s0 proto kernel scope link src 10.5.2.1 metric 100
192.168.144.1 dev ppp0 proto kernel scope link src 79.152.5.240
192.168.144.1 dev ppp0 proto kernel scope link src 79.152.5.240 metric 460
[root@home ~]# ip -6 r
::1 dev lo proto kernel metric 256 pref medium
2a02:9003:a4:5e31::/64 dev ppp0 proto ra metric 460 pref medium
fe80::9ecc:83ff:fece:1cca dev ppp0 proto kernel metric 256 pref medium
fe80::9ecc:83ff:fece:1cca dev ppp0 proto kernel metric 460 pref medium
fe80::bdde:8467:ab35:aaa dev ppp0 proto kernel metric 460 pref medium
fe80::/64 dev enp2s0 proto kernel metric 256 pref medium
fe80::/64 dev enp3s0 proto kernel metric 256 pref medium
fe80::/64 dev ppp0 proto kernel metric 1024 pref medium
default via fe80::9ecc:83ff:fece:1cca dev ppp0 proto static metric 460 pref medium
root@home ~]# firewall-cmd --list-all --zone=internal
internal (active)
target: default
icmp-block-inversion: no
interfaces: enp2s0
sources:
services: cockpit dhcp dhcpv6-client dns http mdns mysql samba-client ssh
ports:
protocols:
forward: no
masquerade: yes
forward-ports:
source-ports:
icmp-blocks:
rich rules:
[root@home ~]# firewall-cmd --list-all --zone=external
external (active)
target: default
icmp-block-inversion: no
interfaces: enp3s0 ppp0
sources:
services: dns http
ports:
protocols:
forward: no
masquerade: yes
forward-ports:
source-ports:
icmp-blocks:
rich rules:
[root@home ~]# nmcli c s
NAME UUID TYPE DEVICE
ppp0 dbe73081-1882-4513-9bdd-4ff871649188 pppoe ppp0
LAN 9ff9602f-5114-4aec-b9f4-928beebe89db ethernet enp2s0
WAN bbede0b8-22aa-479c-9b13-e1bf51c9850a ethernet enp3s0
[root@home ~]# nmcli d s
DEVICE TYPE STATE CONNECTION
ppp0 ppp connected ppp0
enp2s0 ethernet connected LAN
enp3s0 ethernet connected WAN
lo loopback unmanaged --
[root@home ~]# sysctl -a | grep -E 'forwarding'
net.ipv4.conf.all.bc_forwarding = 0
net.ipv4.conf.all.forwarding = 1
net.ipv4.conf.all.mc_forwarding = 0
net.ipv4.conf.default.bc_forwarding = 0
net.ipv4.conf.default.forwarding = 1
net.ipv4.conf.default.mc_forwarding = 0
net.ipv4.conf.enp2s0.bc_forwarding = 0
net.ipv4.conf.enp2s0.forwarding = 1
net.ipv4.conf.enp2s0.mc_forwarding = 0
net.ipv4.conf.enp3s0.bc_forwarding = 0
net.ipv4.conf.enp3s0.forwarding = 1
net.ipv4.conf.enp3s0.mc_forwarding = 0
net.ipv4.conf.lo.bc_forwarding = 0
net.ipv4.conf.lo.forwarding = 1
net.ipv4.conf.lo.mc_forwarding = 0
net.ipv4.conf.ppp0.bc_forwarding = 0
net.ipv4.conf.ppp0.forwarding = 1
net.ipv4.conf.ppp0.mc_forwarding = 0
net.ipv6.conf.all.forwarding = 0
net.ipv6.conf.all.mc_forwarding = 0
net.ipv6.conf.default.forwarding = 0
net.ipv6.conf.default.mc_forwarding = 0
net.ipv6.conf.enp2s0.forwarding = 0
net.ipv6.conf.enp2s0.mc_forwarding = 0
net.ipv6.conf.enp3s0.forwarding = 0
net.ipv6.conf.enp3s0.mc_forwarding = 0
net.ipv6.conf.lo.forwarding = 0
net.ipv6.conf.lo.mc_forwarding = 0
net.ipv6.conf.ppp0.forwarding = 0
net.ipv6.conf.ppp0.mc_forwarding = 0
[root@home ~]# nmcli c s ppp0
connection.id: ppp0
connection.uuid: dbe73081-1882-4513-9bdd-4ff871649188
connection.stable-id: --
connection.type: pppoe
connection.interface-name: ppp0
connection.autoconnect: yes
connection.autoconnect-priority: 0
connection.autoconnect-retries: -1 (default)
connection.multi-connect: 0 (default)
connection.auth-retries: -1
connection.timestamp: 1672259686
connection.read-only: no
connection.permissions: --
connection.zone: external
connection.master: --
connection.slave-type: --
connection.autoconnect-slaves: -1 (default)
connection.secondaries: --
connection.gateway-ping-timeout: 0
connection.metered: unknown
connection.lldp: default
connection.mdns: -1 (default)
connection.llmnr: -1 (default)
connection.dns-over-tls: -1 (default)
connection.mptcp-flags: 0x0 (default)
connection.wait-device-timeout: -1
connection.wait-activation-delay: -1
802-3-ethernet.port: --
802-3-ethernet.speed: 0
802-3-ethernet.duplex: --
802-3-ethernet.auto-negotiate: no
802-3-ethernet.mac-address: --
802-3-ethernet.cloned-mac-address: --
802-3-ethernet.generate-mac-address-mask:--
802-3-ethernet.mac-address-blacklist: --
802-3-ethernet.mtu: auto
802-3-ethernet.s390-subchannels: --
802-3-ethernet.s390-nettype: --
802-3-ethernet.s390-options: --
802-3-ethernet.wake-on-lan: default
802-3-ethernet.wake-on-lan-password: --
802-3-ethernet.accept-all-mac-addresses:-1 (default)
ipv4.method: auto
ipv4.dns: --
ipv4.dns-search: --
ipv4.dns-options: --
ipv4.dns-priority: 0
ipv4.addresses: --
ipv4.gateway: --
ipv4.routes: --
ipv4.route-metric: -1
ipv4.route-table: 0 (unspec)
ipv4.routing-rules: --
ipv4.ignore-auto-routes: no
ipv4.ignore-auto-dns: no
ipv4.dhcp-client-id: --
ipv4.dhcp-iaid: --
ipv4.dhcp-timeout: 0 (default)
ipv4.dhcp-send-hostname: yes
ipv4.dhcp-hostname: --
ipv4.dhcp-fqdn: --
ipv4.dhcp-hostname-flags: 0x0 (none)
ipv4.never-default: no
ipv4.may-fail: yes
ipv4.required-timeout: -1 (default)
ipv4.dad-timeout: -1 (default)
ipv4.dhcp-vendor-class-identifier: --
ipv4.link-local: 0 (default)
ipv4.dhcp-reject-servers: --
ipv6.method: auto
ipv6.dns: --
ipv6.dns-search: --
ipv6.dns-options: --
ipv6.dns-priority: 0
ipv6.addresses: --
ipv6.gateway: --
ipv6.routes: --
ipv6.route-metric: -1
ipv6.route-table: 0 (unspec)
ipv6.routing-rules: --
ipv6.ignore-auto-routes: no
ipv6.ignore-auto-dns: no
ipv6.never-default: no
ipv6.may-fail: yes
ipv6.required-timeout: -1 (default)
ipv6.ip6-privacy: -1 (unknown)
ipv6.addr-gen-mode: default
ipv6.ra-timeout: 0 (default)
ipv6.mtu: auto
ipv6.dhcp-duid: --
ipv6.dhcp-iaid: --
ipv6.dhcp-timeout: 0 (default)
ipv6.dhcp-send-hostname: yes
ipv6.dhcp-hostname: --
ipv6.dhcp-hostname-flags: 0x0 (none)
ipv6.token: --
pppoe.parent: enp3s0
pppoe.service: --
pppoe.username: adslppp@telefonicanetpa
pppoe.password: <hidden>
pppoe.password-flags: 0 (none)
proxy.method: none
proxy.browser-only: no
proxy.pac-url: --
proxy.pac-script: --
GENERAL.NAME: ppp0
GENERAL.UUID: dbe73081-1882-4513-9bdd-4ff871649188
GENERAL.DEVICES: ppp0
GENERAL.IP-IFACE: ppp0
GENERAL.STATE: activated
GENERAL.DEFAULT: yes
GENERAL.DEFAULT6: yes
GENERAL.SPEC-OBJECT: --
GENERAL.VPN: no
GENERAL.DBUS-PATH: /org/freedesktop/NetworkManager/ActiveConnection/1
GENERAL.CON-PATH: /org/freedesktop/NetworkManager/Settings/3
GENERAL.ZONE: external
GENERAL.MASTER-PATH: --
IP4.ADDRESS[1]: 79.152.5.240/32
IP4.GATEWAY: 192.168.144.1
IP4.ROUTE[1]: dst = 192.168.144.1/32, nh = 0.0.0.0, mt = 0
IP4.ROUTE[2]: dst = 192.168.144.1/32, nh = 0.0.0.0, mt = 460
IP4.ROUTE[3]: dst = 0.0.0.0/0, nh = 192.168.144.1, mt = 460
IP4.DNS[1]: 80.58.61.250
IP4.DNS[2]: 80.58.61.254
IP6.ADDRESS[1]: 2a02:9003:a4:5e31:3778:dbd7:df80:6d1d/64
IP6.ADDRESS[2]: fe80::bdde:8467:ab35:aaa/64
IP6.ADDRESS[3]: fe80::a5be:4c45:1a82:d525/64
IP6.GATEWAY: fe80::9ecc:83ff:fece:1cca
IP6.ROUTE[1]: dst = fe80::9ecc:83ff:fece:1cca/128, nh = ::, mt = 460
IP6.ROUTE[2]: dst = fe80::bdde:8467:ab35:aaa/128, nh = ::, mt = 460
IP6.ROUTE[3]: dst = ::/0, nh = fe80::9ecc:83ff:fece:1cca, mt = 460
IP6.ROUTE[4]: dst = fe80::/64, nh = ::, mt = 1024
IP6.ROUTE[5]: dst = fe80::9ecc:83ff:fece:1cca/128, nh = ::, mt = 256
IP6.ROUTE[6]: dst = 2a02:9003:a4:5e31::/64, nh = ::, mt = 460
[root@home ~]# nmcli c s WAN
connection.id: WAN
connection.uuid: bbede0b8-22aa-479c-9b13-e1bf51c9850a
connection.stable-id: --
connection.type: 802-3-ethernet
connection.interface-name: enp3s0
connection.autoconnect: yes
connection.autoconnect-priority: 0
connection.autoconnect-retries: -1 (default)
connection.multi-connect: 0 (default)
connection.auth-retries: -1
connection.timestamp: 1672260041
connection.read-only: no
connection.permissions: user:root
connection.zone: external
connection.master: --
connection.slave-type: --
connection.autoconnect-slaves: -1 (default)
connection.secondaries: --
connection.gateway-ping-timeout: 0
connection.metered: unknown
connection.lldp: default
connection.mdns: -1 (default)
connection.llmnr: -1 (default)
connection.dns-over-tls: -1 (default)
connection.mptcp-flags: 0x0 (default)
connection.wait-device-timeout: -1
connection.wait-activation-delay: -1
802-3-ethernet.port: --
802-3-ethernet.speed: 0
802-3-ethernet.duplex: --
802-3-ethernet.auto-negotiate: no
802-3-ethernet.mac-address: --
802-3-ethernet.cloned-mac-address: permanent
802-3-ethernet.generate-mac-address-mask:--
802-3-ethernet.mac-address-blacklist: --
802-3-ethernet.mtu: auto
802-3-ethernet.s390-subchannels: --
802-3-ethernet.s390-nettype: --
802-3-ethernet.s390-options: --
802-3-ethernet.wake-on-lan: default
802-3-ethernet.wake-on-lan-password: --
802-3-ethernet.accept-all-mac-addresses:-1 (default)
ipv4.method: disabled
ipv4.dns: --
ipv4.dns-search: --
ipv4.dns-options: --
ipv4.dns-priority: 0
ipv4.addresses: --
ipv4.gateway: --
ipv4.routes: --
ipv4.route-metric: -1
ipv4.route-table: 0 (unspec)
ipv4.routing-rules: --
ipv4.ignore-auto-routes: no
ipv4.ignore-auto-dns: no
ipv4.dhcp-client-id: --
ipv4.dhcp-iaid: --
ipv4.dhcp-timeout: 0 (default)
ipv4.dhcp-send-hostname: yes
ipv4.dhcp-hostname: --
ipv4.dhcp-fqdn: --
ipv4.dhcp-hostname-flags: 0x0 (none)
ipv4.never-default: yes
ipv4.may-fail: yes
ipv4.required-timeout: -1 (default)
ipv4.dad-timeout: -1 (default)
ipv4.dhcp-vendor-class-identifier: --
ipv4.link-local: 0 (default)
ipv4.dhcp-reject-servers: --
ipv6.method: ignore
ipv6.dns: --
ipv6.dns-search: --
ipv6.dns-options: --
ipv6.dns-priority: 0
ipv6.addresses: --
ipv6.gateway: --
ipv6.routes: --
ipv6.route-metric: -1
ipv6.route-table: 0 (unspec)
ipv6.routing-rules: --
ipv6.ignore-auto-routes: no
ipv6.ignore-auto-dns: no
ipv6.never-default: no
ipv6.may-fail: yes
ipv6.required-timeout: -1 (default)
ipv6.ip6-privacy: -1 (unknown)
ipv6.addr-gen-mode: eui64
ipv6.ra-timeout: 0 (default)
ipv6.mtu: auto
ipv6.dhcp-duid: --
ipv6.dhcp-iaid: --
ipv6.dhcp-timeout: 0 (default)
ipv6.dhcp-send-hostname: yes
ipv6.dhcp-hostname: --
ipv6.dhcp-hostname-flags: 0x0 (none)
ipv6.token: --
proxy.method: none
proxy.browser-only: no
proxy.pac-url: --
proxy.pac-script: --
GENERAL.NAME: WAN
GENERAL.UUID: bbede0b8-22aa-479c-9b13-e1bf51c9850a
GENERAL.DEVICES: enp3s0
GENERAL.IP-IFACE: enp3s0
GENERAL.STATE: activated
GENERAL.DEFAULT: no
GENERAL.DEFAULT6: no
GENERAL.SPEC-OBJECT: --
GENERAL.VPN: no
GENERAL.DBUS-PATH: /org/freedesktop/NetworkManager/ActiveConnection/5
GENERAL.CON-PATH: /org/freedesktop/NetworkManager/Settings/1
GENERAL.ZONE: external
GENERAL.MASTER-PATH: --
IP4.GATEWAY: --
IP6.ADDRESS[1]: fe80::2e6:f1ff:fe68:80d/64
IP6.GATEWAY: --
[root@home ~]# nmcli c s LAN
connection.id: LAN
connection.uuid: 9ff9602f-5114-4aec-b9f4-928beebe89db
connection.stable-id: --
connection.type: 802-3-ethernet
connection.interface-name: enp2s0
connection.autoconnect: yes
connection.autoconnect-priority: 0
connection.autoconnect-retries: -1 (default)
connection.multi-connect: 0 (default)
connection.auth-retries: -1
connection.timestamp: 1672260041
connection.read-only: no
connection.permissions: user:root
connection.zone: internal
connection.master: --
connection.slave-type: --
connection.autoconnect-slaves: -1 (default)
connection.secondaries: --
connection.gateway-ping-timeout: 0
connection.metered: unknown
connection.lldp: default
connection.mdns: -1 (default)
connection.llmnr: -1 (default)
connection.dns-over-tls: -1 (default)
connection.mptcp-flags: 0x0 (default)
connection.wait-device-timeout: -1
connection.wait-activation-delay: -1
802-3-ethernet.port: --
802-3-ethernet.speed: 0
802-3-ethernet.duplex: --
802-3-ethernet.auto-negotiate: no
802-3-ethernet.mac-address: --
802-3-ethernet.cloned-mac-address: permanent
802-3-ethernet.generate-mac-address-mask:--
802-3-ethernet.mac-address-blacklist: --
802-3-ethernet.mtu: auto
802-3-ethernet.s390-subchannels: --
802-3-ethernet.s390-nettype: --
802-3-ethernet.s390-options: --
802-3-ethernet.wake-on-lan: default
802-3-ethernet.wake-on-lan-password: --
802-3-ethernet.accept-all-mac-addresses:-1 (default)
ipv4.method: manual
ipv4.dns: --
ipv4.dns-search: --
ipv4.dns-options: --
ipv4.dns-priority: 0
ipv4.addresses: 10.5.2.1/24
ipv4.gateway: --
ipv4.routes: --
ipv4.route-metric: -1
ipv4.route-table: 0 (unspec)
ipv4.routing-rules: --
ipv4.ignore-auto-routes: yes
ipv4.ignore-auto-dns: yes
ipv4.dhcp-client-id: --
ipv4.dhcp-iaid: --
ipv4.dhcp-timeout: 0 (default)
ipv4.dhcp-send-hostname: yes
ipv4.dhcp-hostname: --
ipv4.dhcp-fqdn: --
ipv4.dhcp-hostname-flags: 0x0 (none)
ipv4.never-default: yes
ipv4.may-fail: yes
ipv4.required-timeout: -1 (default)
ipv4.dad-timeout: -1 (default)
ipv4.dhcp-vendor-class-identifier: --
ipv4.link-local: 0 (default)
ipv4.dhcp-reject-servers: --
ipv6.method: ignore
ipv6.dns: --
ipv6.dns-search: --
ipv6.dns-options: --
ipv6.dns-priority: 0
ipv6.addresses: --
ipv6.gateway: --
ipv6.routes: --
ipv6.route-metric: -1
ipv6.route-table: 0 (unspec)
ipv6.routing-rules: --
ipv6.ignore-auto-routes: no
ipv6.ignore-auto-dns: no
ipv6.never-default: no
ipv6.may-fail: yes
ipv6.required-timeout: -1 (default)
ipv6.ip6-privacy: -1 (unknown)
ipv6.addr-gen-mode: eui64
ipv6.ra-timeout: 0 (default)
ipv6.mtu: auto
ipv6.dhcp-duid: --
ipv6.dhcp-iaid: --
ipv6.dhcp-timeout: 0 (default)
ipv6.dhcp-send-hostname: yes
ipv6.dhcp-hostname: --
ipv6.dhcp-hostname-flags: 0x0 (none)
ipv6.token: --
proxy.method: none
proxy.browser-only: no
proxy.pac-url: --
proxy.pac-script: --
GENERAL.NAME: LAN
GENERAL.UUID: 9ff9602f-5114-4aec-b9f4-928beebe89db
GENERAL.DEVICES: enp2s0
GENERAL.IP-IFACE: enp2s0
GENERAL.STATE: activated
GENERAL.DEFAULT: no
GENERAL.DEFAULT6: no
GENERAL.SPEC-OBJECT: --
GENERAL.VPN: no
GENERAL.DBUS-PATH: /org/freedesktop/NetworkManager/ActiveConnection/4
GENERAL.CON-PATH: /org/freedesktop/NetworkManager/Settings/2
GENERAL.ZONE: internal
GENERAL.MASTER-PATH: --
IP4.ADDRESS[1]: 10.5.2.1/24
IP4.GATEWAY: --
IP4.ROUTE[1]: dst = 10.5.2.0/24, nh = 0.0.0.0, mt = 100
IP6.ADDRESS[1]: fe80::2e6:f1ff:fe68:80c/64
IP6.GATEWAY: --
IP6.ROUTE[1]: dst = fe80::/64, nh = ::, mt = 256
Thanks for helping.
Wolfgang