Getting masquerading working on 2.3.18 and DSL

Matt mmaynard@wronski.math.uwaterloo.ca
Thu, 30 Sep 1999 16:24:01 -0400 (EDT) 

Dave,

	Thanks for the reply.  I am not currently at the mahcine, but I
can answer some of the questions you asked, and I will send the output of
the ifconfig and netstat outputs from home later. 

On Thu, 30 Sep 1999, dave madden wrote:

> I have DSL, a private network, and masquerading (mostly) working, so
> perhaps I can help.  (I've also been fiddling with networks for years,
> which will probably be more useful.)
> 

	thanks, muchly appreciated. Just for personal interest is your
xDSL line done over PPPoE ? There is much resentment towards Bell
for specifically targetting their ADSL service towards engineering and
Computer Science students in Waterloo without ever mentioning thatwe would
need to get the PPPoE thing sorted out to use our linux machines on it. (a
lot of us use linux at home as a replacement for going to he school'x
Xterm labs).

> First, can you get to the outside world from your gateway/firewall
> box?  Presumably, packets leaving over the PPPoE have a source address
> of your ppp0 interface.  Can you ping back to that address from a
> remote machine?
> 

	Yes, I can use lynx to surf the net from the 486. I can ssh back
to my machine from my school account by using the INet address of the ppp0
inteface.


> Next, is the ppp0 interface the default entry in the gateway's routing
> table?

	Yes, ppp0 is the default route on the 486.

> 
> Next, can you get from a private box to the gateway?  (I have to
> assume you can.)

	Yep .. ssh'd home from school, then had that nasty OOPS business
with the ip_nat module ....

> 
> Is the default route entry on the private boxes the gateway's 192.168
> address?
> 

	On the private machine the default route is to 192.168.1.1
(gateway 486).

> Once you get this far, there's some point in fiddling with iptables
> and ipnatctl.  

	Ok, well I am going to give it a shot again later. Hopefully I can
fiugre out why I cant insert the ip_nat module anymore without causing the
OOPS.

>If you send "ifconfig -a" and "netstat -rn" output from
> the gateway box and a private box, perhaps I'll be able to spot
> something, or suggest an ipnatctl command, or a test to figure out
> what's going on.

	Will do, thanks a bunch.

Matt

---
3B CS University or Waterloo