| Terry & Cheryl Haimann on Thu, 12 Sep 2002 16:36:29 -0500 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: [Cialug] ipchains followup ? |
On Thu, 12 Sep 2002 20:09:47 -0000, dave@xxxxxxxxxxxxx wrote: >Terry & Cheryl Haimann <haimann@xxxxxxxxxxx> said: > >> I tried duplicating my 6.0 /etc/sysconfig/network file exactly and >it failed. >> > >So... when you bring up the ppp0 connection on the new RH 7.3 : > >- what is the output of route -n? Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 209.234.64.221 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 209.234.64.221 0.0.0.0 UG 0 0 0 ppp0 > >- From the RH 7.3 box, can you get out to the internet? Yes > >- From the RH 7.3 box, can you still see the internal network? Yes > >If all of this is OK, then the problem is somewhere in the ip >forwading and / or iptables. > >-dc > [root@xxxxxx root]# cat /etc/sysconfig/network NETWORKING=yes FORWARD_IPV4=no HOSTNAME=oldboy.oldboy.com DOMAINNAME=oldboy.com GATEWAY=209.234.64.192 GATEWAYDEV=eth0 I ran the following script after cycling iptables(ie:) /etc/init.d/iptables stop sh fwtest2 # flush all rules & nat tables iptables --flush iptables --table nat --flush # elete all chains that are not in the default filter and nat tables iptables --delete-chain iptables --table nat --delete-chain #set up ip fowarding and masqurading iptables --table nat --append POSTROUTING --out-interface ppp0 -j MASQUERADE iptables --append FORWARD --in-interface eth0 -j ACCEPT echo 1 > /proc/sys/net/ipv4/ip_forward >_______________________________________________ >Cialug mailing list >Cialug@xxxxxxxxxx >http://cialug.org/mailman/listinfo/cialug _______________________________________________ Cialug mailing list Cialug@xxxxxxxxxx http://cialug.org/mailman/listinfo/cialug