Somebody help!

Nigel Morse N.Morse@hyperknowledge.com
Mon, 13 Aug 2001 12:57:38 +0100 

Ok. So in my original post you need to change eth0 for eth1 

# first flush chains and delete all user chains
iptables -F
iptables -X
iptables -t nat -F
iptables -t nat -X

# reset policy on nat preroute
iptables -t nat -P PREROUTING ACCEPT

# Setup masquerade
iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE

# Allow all packets
iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT


Ok. Now from your firewall itself try pinging 209.10.41.242 ( which is
www.kernel.org ).  Then try the same from a machine behind the firewall. And
if you could tell me the output of an lsmod command  (RH 7.1 uses ipchains
by default, but as you could do an iptables -L, ipchains is probably not
loaded - just want to make sure!)


> -----Original Message-----
> From: Rohit Peyyeti [mailto:rohit@translogicsys.com]
> Sent: 13 August 2001 12:21
> To: Nigel Morse
> Cc: netfilter
> Subject: Re: Somebody help!
> 
> 
> Heya:
> 
> We have a Wireless broadband connection. I have a linux 
> firewall machine
> which
> has two NIC's in it: eth0, eth1. eth0 is facing my local area network
> whereas
> eth1 is facing internet. I also have a static IP which was 
> given to me by my
> ISP. Here is my ifconfig output:
> 
>  eth0      Link encap:Ethernet  HWaddr 00:80:48:FD:FE:C5
>           inet addr:200.200.200.150  Bcast:200.200.200.255
> Mask:255.255.255.0
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:826 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:334 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:100
>           Interrupt:9 Base address:0xfce0
> 
> eth1      Link encap:Ethernet  HWaddr 00:A0:C9:DE:58:DD
>           inet addr:xxx.xxx.xxx.xxx  Bcast:xxx.xxx.xxx.xxx
> Mask:255.255.255.0
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:15 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:100
>           Interrupt:9 Base address:0xfcc0
> 
> lo        Link encap:Local Loopback
>           inet addr:127.0.0.1  Mask:255.0.0.0
>           UP LOOPBACK RUNNING  MTU:16436  Metric:1
>           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:0
> 
> 
> I had redhat 7.0 perviously installed on this system on which 
> MASQ worked
> perfectly. I upgraded to RedHat 7.1 for better i.e for iptables.
> 
> Let me know if you need anything...
> 
> ...Rohit
> 
> 
> 
> ----- Original Message -----
> From: Nigel Morse <N.Morse@hyperknowledge.com>
> To: 'Rohit Peyyeti' <rohit@translogicsys.com>; Netfilter (E-mail)
> <netfilter@lists.samba.org>
> Sent: Monday, August 13, 2001 4:30 PM
> Subject: RE: Somebody help!
> 
> 
> >
> > More questions...
> >
> > Is this a single machine? Any behind the firewall? what 
> interfaces do you
> > have in the box? What is your internet connection?
> >
> > The rule I sent is ok if your ISP comes in on eth0.
> >
> > Do you use DSL or what? Also tell me what you have tried to 
> do so far.
> >
> > Cheers
> > Nigel
> >
> >
> >
> >
> > > heya:
> > >
> > > Here is the output what you have asked for. I just did fresh
> > > install of
> > > RedHat7.1. Kernel version is 2.4.2-2. I did not compile 
> any kernel on
> > > this system.
> > >
> > > Thanks!
> > <snip>
>