David A. Ranch wrote:
>
> >Using the simplest setup described in the howto (see below), the
> >internal machine (192.168.1.2) can ping anywhere on the Internet through
> >the masquerading machine, but can only get WWW, ftp, etc. (and I assume
> >any other TCP-based services) from my ISP's machines (machines in the
> >ISP's subnet). Accesses to other systems on the Internet never succeed
> >(DNS works, but the internal machine never receives a response).
>
> It sounds like you aren't getting a default gateway from the
> ISP. When you are dialed up and can connect to all the
> ISP servers but can't connect to other servers on the Internet,
> (list your given PPP IP and a few ISP server IPs you are able to
> connect to, and also send us the output from "netstat -rn".
>
On the gateway machine (192.168.1.1) netstat -rn gives:
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
209.54.96.223 0.0.0.0 255.255.255.255 UH 1006 0 0
ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 1500 0 0
eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 3584 0 0
lo
0.0.0.0 209.54.96.223 0.0.0.0 UG 1006 0 0
ppp0
In this case, the assigned (dynamic) local IP is 209.141.65.69, and the
default gateway (209.54.96.223) seems right. I can communicate with any
system with IP address 209.54.96.xx through masquerading but not with
other systems. Examples that work include the www server
(209.54.96.222) and the news server (209.54.96.248). From the
masquerading machine itself, all services work with any IP address --
the problem is from the internal machine (192.168.1.2) through
masquerading (with TCP only? ICMP (ping, traceroute) works to any IP
address).
Any thoughts?
Thanks,
- Bill Herrington
[EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
