[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: IP masquerade question



> FORWARD_IPV4="no"

you shld enable ip forwarding.  can you post a copy of your ipchains rule
or maybe the script that you use to bring up ip masquerading.

here's a sample rc.firewall script that shld be run in rc.local:


====================================
#!/bin/sh 
 
mod_dir="/usr/src/linux/net/ipv4"
 
#load the ip masq modules: 

insmod $mod_dir/ip_masq_cuseeme.o 
insmod $mod_dir/ip_masq_ftp.o 
insmod $mod_dir/ip_masq_irc.o 
insmod $mod_dir/ip_masq_quake.o 
insmod $mod_dir/ip_masq_raudio.o 
insmod $mod_dir/ip_masq_user.o 
insmod $mod_dir/ip_masq_vdolive.o
 
#enable ip forwarding in the linux kernel. 

echo "1" > /proc/sys/net/ipv4/ip_forward
 
#enable masq timeouts 

/sbin/ipchains -M -S 7200 10 160
 
#enable simple ip masquerading for the internal 192.168.0.0 network
/sbin/ipchains -P forward DENY 
/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ 

echo "/etc/rc.d/rc.firewall done."

===============================


regards,
-nenita



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]