Two network cards - routing and iptables

Clemens Eisserer linuxhippy at gmail.com
Fri Aug 26 17:31:19 CEST 2005


Hello again and thanks a lot for answering me,

>    For issue 1, perhaps you are blocking ICMP traffic on eth1?
No, I do not block anything as far as I know regarding ICMP.

This configuration I use for iptables:
echo 1 >/proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -j MASQUERADE
iptables -t filter -A INPUT -s 192.168.0.0/24 -j ACCEPT
iptables -t filter -A INPUT -s 192.168.1.0/24 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport \! 8901 -j DROP

btw. do you know why I cannot connect to the internet from localhost
if I set the last line?
I tried to set -s !127.0.0.1 but this also seems to not work :-(

>    For issue 2, ip_forward needs to be set to a 1 (not part of
> iptables).
> 
> Take Care!
Is this really anything I need to do since I already set it to 1

Hope I am not nerving,

thank you in advance, lg Clemens



More information about the netfilter mailing list