[ale] home networking difficulties
Jonathan Glass
jonathan.glass at ibb.gatech.edu
Wed Aug 28 07:50:37 EDT 2002
What happens if you set your forward policy to ACCEPT? Why aren't you
using iptables?
See comments below.
Jonathan
At 03:54 AM 8/28/2002 -0700, Andrew Grimmke wrote:
>On Tue, 27 August 2002, Geoffrey wrote:
> > Thats the good news. The bad news is that IP
> > forwarding/masquerading does not seem to be working.
<snip some stuff>
> > # 1) Flush the rule tables.
> > /sbin/ipchains -F input
> > /sbin/ipchains -F forward
> > /sbin/ipchains -F output
> > # 2) Set the MASQ timings and allow packets in for
> > DHCP configuration.
> > /sbin/ipchains -M -S 7200 10 60
Interesting...I've never done this before...
> > /sbin/ipchains -A input -j ACCEPT -i eth0 -s 0/0 68
>-d 0/0 67 -p udp
> > # 3) Deny all forwarding packets except those from
> > local network.
> > # Masquerage those.
If you change this line to ... -P forward ACCEPT, what happens?
> > /sbin/ipchains -P forward DENY
Shouldn't you specify which NIC has the 192.168.1.0 network, to prevent IP
spoofing?
> > /sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ
> > # 4) Load forwarding modules for special services.
> > /sbin/modprobe ip_masq_ftp
> > /sbin/modprobe ip_masq_raudio
> >
> > did I do something wrong? Is there anything I missed?
> >
> > Thanks,
> > Andrew
> >
> > Andrew Grimmke
> > Marietta, Georgia
---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
sent to listmaster at ale dot org.
More information about the Ale
mailing list