ip masquerade

Alexander Dalloz ad+lists at uni-x.org
Thu Jan 20 16:04:56 UTC 2005


Am Do, den 20.01.2005 schrieb naxis um 16:30:

> these are some details about my network.
> I'm trying to to share the internet with a linux machine.
> I can communicate with skypie but cannot surf the net and connot chat
> messengers.

It is skype - and about which "messenger" are we talking? There are
several with similar names but using different ports.

> Network
> 
> eth0 get dynamic ip address from the router(192.168.11.4) 
> eth1 FC3 local dhcp server (IP:192.168.1.1 GW:eth0)

Which "router" are you talking about? Besides the FC3 gateway host there
exists another router?

192.168.11.0/24 is the net between the FC3 host and the real internet
connection device, right? Why does the FC3 host for eth0 get then a
dynamic IP? Switch over to a static IP.

192.168.1.0/24 is your internal net, means between the FC3 gateway and
your other LAN hosts? Why does eth1 get a dynamic IP? Use a static one.
Why a gateway setting for eth1 pointing to eth0?

After changing the IPs to be static ones for both ethernet devices
please post the /etc/sysconfig/network-scripts/ifcfg-eth[0,1] contents.
Be sure you have set GATEWAY only in /etc/sysconfig/network, and there
it is eth0.

> I run
> iptables -t nat -A POSTROUTING -o eth0 -s 192.168.1.0/24 -j MASQUERADE

You can leave out the source net instruction. Run "service iptables
save" to make this rule static and loaded automatically each time the
iptables service is started. Any other filter rules active?

> "route -n" gives
> Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
> 192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
> 192.168.11.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
> 169.254.0.0     0.0.0.0         255.255.0.0     U     0      0        0 eth1
> 0.0.0.0         192.168.11.1    0.0.0.0         UG    0      0        0 eth0

Looks properly.

> I can communicate with skypie so I think the internet sharing is OK but
> I cannot surf the net and cannot communicate with messengers

What is the content of /etc/resolv.conf and /etc/hosts? Which nameserver
settings and gateway settings do the hosts inside the LAN have?

Alexander


-- 
Alexander Dalloz | Enger, Germany | new address - new key: 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora GNU/Linux Core 2 (Tettnang) on Athlon kernel 2.6.10-1.9_FC2smp 
Serendipity 16:47:27 up 6 days, 9 users, load average: 0.54, 0.57, 0.70 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20050120/d5e15c23/attachment-0001.sig>


More information about the fedora-list mailing list