Cant get iptables to work
Dave Airlie
airlied@csn.ul.ie
Mon, 30 Jul 2001 09:53:09 +0100 (IST)
are you just trying ping ... I've seen an issue in 2.4.7 (but I've been no
use in debugging it :-), where pings weren't been masq'ed properly until I
had opened a TCP connection.. but I can't swear the exact circumstances
and can provide no more info..
perhaps you might want to telnet to an IP address from behind the FW and
see if that works... (use an IP not a name incase DNS is busted).. then
check ping..
Dave.
On Mon, 30 Jul 2001, Peter Pohlmann wrote:
> Hello lList,
>
> here iss my little "BIG" Problem.
> I have a redhat 7.1 box and recently installed kernel 2.4.7
> Iptables Version 1.2.2
>
> I habe a private LAN 192.168.1.0 on interface eth1 and a public IP on eth0
>
> I can ping from the private LAN eth1 and eth0 ,but I am unable to ping the outside world.
> IPCHAINS is not running.
>
> Masquerading is on and the rest is all open.
>
> THe prime objective for now is to give the LAN access to the "world"
> Can someone help me ? I am not sure if it is the rules or something else.
> I have the following line in script:
>
> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> echo 1 > /proc/sys/net/ipv4/ip_forward
>
> That is all and I think that should give access. I have compiled the kernel with all netfilter options included except FAST SWITCHING as it is describted in some FAQs.
>
> No idea anymore where to look further. Any advise ?
>
>
> Thanks for your help.
> Peter
>
>
>
>
>
>
--
David Airlie, Software Engineer
http://www.skynet.ie/~airlied / airlied@skynet.ie
pam_smb / Linux DecStation / Linux VAX / ILUG person