Hi,guys! I use iptables to let the PCs in the subnet to connect the internet outside.
And i write a simple script,but it doesn't work: #!/bin/sh iptables -F #Define packets from Internet server to Intranet iptables -A FORWARD -d 198.168.1.0/24 -i eth0 -j ACCEPT #Define packets from Intranet to Internet iptables -A FORWARD -s 198.168.1.0/24 -i eth1 -j ACCEPT Here is the result of iptables -L: # iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy DROP) target prot opt source destination ACCEPT all -- anywhere 198.168.1.0/24 ACCEPT all -- 198.168.1.0/24 anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination The eth0 here has the real ip,and the eth1 have a subnet ip:192.168.1.21. How to fix this problem?All I need now is just to let my office machine to use the internet! Thanks in advanced!! -- wcw -- [EMAIL PROTECTED] mailing list