Cant get iptables to work
Wenzhong Chen
chenw@cs.queensu.ca
Mon, 30 Jul 2001 12:05:23 -0400 (EDT)
Actually I have the simular question:
I can ping from firewall box. But when I try to ping from internal box
behind firewall, it doesn't work. Is it my firewall problem?
James
On Mon, 30 Jul 2001, Anthony Liu wrote:
> On Mon, Jul 30, 2001 at 01:48:51AM -0000, Peter Pohlmann wrote:
>
> > I can ping from the private LAN eth1 and eth0 ,but I am unable to ping the outside world.
> > IPCHAINS is not running.
> >
> > Masquerading is on and the rest is all open.
> >
> > THe prime objective for now is to give the LAN access to the "world"
> > Can someone help me ? I am not sure if it is the rules or something else.
> > I have the following line in script:
> >
> > iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> > echo 1 > /proc/sys/net/ipv4/ip_forward
>
> Check your DNS setting and try to ping a numeric address. First try
> to ping the "inet:" address, then the "P-t-P:" address from the
> ifconfig output. Check route and see if the "default" route has been
> set to the "P-t-P:" address. If ping from the firewall works, then
> try a box behind it. Does the box behind it has default route? Does
> it DNS entry point to either the firewall box or a real DNS server?
>
>
> --
> Linux 2.4.7fw #2 Sun Jul 29 21:32:38 CST 2001 i586 unknown
> 20:10:02 up 13:49, 1 user, load average: 1.00, 1.00, 1.00
>
>