Netfiler ...IPchains
Martin Josefsson
gandalf@wlug.westbo.se
Mon, 6 Mar 2000 00:07:58 +0100 (CET)
On Mon, 6 Mar 2000, Oleg Reabciuc wrote:
> Hi ppl!
Hi
> At this moment I try to using netfilter only for one
> reason .. I use it only for changing destination of
> packets for some host from my net .... But I can use
> only ipnatctl :( .. When I load iptables All My host
> can't go trough my firewall ....... I don't understand
>
> where is the problem ..
> May be somebody can't tell me how can I change
> destination of some packets with IPchains or how can I
> fix problem with iptables
The default policy for the FORWARD chain is DROP.
Change the policy to ACCEPT with iptables -P FORWARD ACCEPT
I see that you use netfilter 0.1.x , you should consider switching to
0.90.x (right now the latest release is 0.90.4). This because ipnatctl has
been integrated into iptables. and this is the code that will be
integrated in the kernel before 2.4 is released.
Otherwise you will have to alter your scripts later when/if you upgrade to
a later 2.3 kernel. (or 2.4 when it's released)
You'll find the 0.90.x releases here:
http://netfilter.kernelnotes.org/0.90/0.90.html
/Martin