[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: IP masquerade question

From: Nenita Manaois <cyberlab magix com sg>
To: Brian A Bucher <babucher MIT EDU>
Cc: redhat-install-list redhat com
Subject: Re: IP masquerade question
Date: Tue, 30 May 2000 09:32:13 +0800 (SGT)

> FORWARD_IPV4="no"

you shld enable ip forwarding.  can you post a copy of your ipchains rule
or maybe the script that you use to bring up ip masquerading.

here's a sample rc.firewall script that shld be run in rc.local:


====================================
#!/bin/sh 
 
mod_dir="/usr/src/linux/net/ipv4"
 
#load the ip masq modules: 

insmod $mod_dir/ip_masq_cuseeme.o 
insmod $mod_dir/ip_masq_ftp.o 
insmod $mod_dir/ip_masq_irc.o 
insmod $mod_dir/ip_masq_quake.o 
insmod $mod_dir/ip_masq_raudio.o 
insmod $mod_dir/ip_masq_user.o 
insmod $mod_dir/ip_masq_vdolive.o
 
#enable ip forwarding in the linux kernel. 

echo "1" > /proc/sys/net/ipv4/ip_forward
 
#enable masq timeouts 

/sbin/ipchains -M -S 7200 10 160
 
#enable simple ip masquerading for the internal 192.168.0.0 network
/sbin/ipchains -P forward DENY 
/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ 

echo "/etc/rc.d/rc.firewall done."

===============================


regards,
-nenita

References:
- IP masquerade question
  - From: Brian A Bucher

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]