* Matthias Camenzind <[EMAIL PROTECTED]> [2008-09-27 07:19 +0200]:
> This is what i did on ubuntu:

> sudo iptables -N RH-Firewall-1-INPUT
> sudo iptables -I RH-Firewall-1-INPUT -s -j ACCEPT

I think these two lines are useless (and the RH- prefix makes me think
it comes from a RedHat based system).

Anyway, here you're creating a chain you do not seem to use (unless
it is magically used by Ubuntu).

> sudo iptables -t nat -A POSTROUTING -j MASQUERADE -s

This one is necessary; you'd better specify the output interface with -o
(for example -o eth0).

> sudo iptables -t nat -A PREROUTING -p tcp -s -d 
> --sport 0:65535 --dport 0:65535 -j DNAT --to-destination
> sudo iptables -t nat -A PREROUTING -p udp -s -d 
> --sport 0:65535 --dport 0:65535 -j DNAT --to-destination

I wonder what it's supposed to do.

> sudo sysctl -w net.ipv4.ip_forward=1


> and I installed and run Firestarter (not sure if it was necessary)

Don't think so :)

Openmoko community mailing list

Reply via email to