Cant get iptables to work
Anthony Liu
anthony@nexus-online.com
Mon, 30 Jul 2001 20:19:57 +0800
On Mon, Jul 30, 2001 at 01:48:51AM -0000, Peter Pohlmann wrote:
> I can ping from the private LAN eth1 and eth0 ,but I am unable to ping the outside world.
> IPCHAINS is not running.
>
> Masquerading is on and the rest is all open.
>
> THe prime objective for now is to give the LAN access to the "world"
> Can someone help me ? I am not sure if it is the rules or something else.
> I have the following line in script:
>
> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> echo 1 > /proc/sys/net/ipv4/ip_forward
Check your DNS setting and try to ping a numeric address. First try
to ping the "inet:" address, then the "P-t-P:" address from the
ifconfig output. Check route and see if the "default" route has been
set to the "P-t-P:" address. If ping from the firewall works, then
try a box behind it. Does the box behind it has default route? Does
it DNS entry point to either the firewall box or a real DNS server?
--
Linux 2.4.7fw #2 Sun Jul 29 21:32:38 CST 2001 i586 unknown
20:10:02 up 13:49, 1 user, load average: 1.00, 1.00, 1.00