Cant get iptables to work
Peter Pohlmann
peter@e-partner.com
Mon, 30 Jul 2001 01:48:51 -0000
This is a multi-part message in MIME format.
------=_NextPart_000_00C4_01C11899.C89D4EE0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hello lList,
here iss my little "BIG" Problem.
I have a redhat 7.1 box and recently installed kernel 2.4.7
Iptables Version 1.2.2
I habe a private LAN 192.168.1.0 on interface eth1 and a public IP on =
eth0
I can ping from the private LAN eth1 and eth0 ,but I am unable to ping =
the outside world.
IPCHAINS is not running.
Masquerading is on and the rest is all open.=20
THe prime objective for now is to give the LAN access to the "world"
Can someone help me ? I am not sure if it is the rules or something =
else.
I have the following line in script:
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward
That is all and I think that should give access. I have compiled the =
kernel with all netfilter options included except FAST SWITCHING as it =
is describted in some FAQs.
No idea anymore where to look further. Any advise ?
Thanks for your help.
Peter
=20
------=_NextPart_000_00C4_01C11899.C89D4EE0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2479.6" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hello lList,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>here iss my little "BIG" =
Problem.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>I have a redhat 7.1 box and recently =
installed=20
kernel 2.4.7</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Iptables Version 1.2.2</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I habe a private LAN 192.168.1.0 on =
interface eth1=20
and a public IP on eth0</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I can ping from the private LAN eth1 =
and eth0 ,but=20
I am unable to ping the outside world.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>IPCHAINS is not running.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Masquerading is on and the rest is all =
open.=20
</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>THe prime objective for now is to give =
the LAN=20
access to the "world"</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Can someone help me ? I am not sure if =
it is the=20
rules or something else.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>I have the following line in =
script:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>iptables -t nat -A POSTROUTING -o eth0 =
-j=20
MASQUERADE</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>echo 1 >=20
/proc/sys/net/ipv4/ip_forward</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>That is all and I think that should =
give access. I=20
have compiled the kernel with all netfilter options included except FAST =
SWITCHING as it is describted in some FAQs.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>No idea anymore where to look further. =
Any advise=20
?</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Thanks for your help.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Peter</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2> </FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV></BODY></HTML>
------=_NextPart_000_00C4_01C11899.C89D4EE0--