Guillaume Cottenceau wrote:
> David <[EMAIL PROTECTED]> writes:
>
>
> [...]
>
>
>>I modified to files for the Masquerading, I think i should have only done
>>the second one. Doesn't this kernel use iptables and not ipchains?
>>
>
> So that if you ever reboot with 2.2 it will still work.
So you are saying I should modify both?! It makes sense. I was wondering
why both were there if it only needed 2.4. I will modify both.
>
>
>
> [...]
>
>
>>In rc.firewall.inet_sharing-2.4 I changed only Masquerade and not forward.
>>
>
> Why?
Because it worked. I was trying to find out what I did have to change
and not change. Changing Masq worked. It isn't like Connection Sharing
has a lot or any documentation with it. I had to piece together
information I found on the internet and make sense of it. If connection
sharing had asked me the address I would like to add, it could have done
the proper changes for me. Being in between an expert and newbie I was
able to do something to make it work. I don't think a newbie would have,
well a smart newbie would have.
>
>
>
>>Not sure if I should have done forward yet though.
>>**************************************************
>>
>># In the NAT table (-t nat), Append a rule (-A) after routing (POSTROUTING)
>># which says to MASQUERADE the connection (-j MASQUERADE).
>>/sbin/iptables -t nat -A POSTROUTING -s 192.168.0.2/24 -j MASQUERADE
>>
>># Allows forwarding specifically to our LAN
>>/sbin/iptables -A FORWARD -s 192.168.0.0/24 -j ACCEPT
>>
>>***************************************************
>>
>>
>>I can figure this out since I got the internet sharing working now, but
>>what happened after I modified these and rebooted was weird. The Gnome
>>Desktop had Nautilus Icons on it. The preferences for Nautilus in
>>Preferences/Windows & Desktop had an option to use Nautilus to draw the
>>desktop or use your home folder. I wrote up a bug #4735 that that choice
>>would disappear under a certain circumstance. Well I have another now,
>>cause after doing this above it disappeared again and the desktop icons
>>are just paper icons that don't work. Can't change it back either cause
>>the selection in preferences is gone. Have to recreate the user or
>>something. Maybe when I put rc.firewall.init_sharing-2.2 back to original
>>and only modify 2.4 it will work again. We'll see.
>>
>
> It's highly unprobable to me.
Highly unprobable!?!?! The desktop is still like that and it was fine
before this (no updates have been done, straight from the iso). I made a
new user and it is fine, my original user Desktop is crapped. The icons
don't work and are wrong. The Nautilus option that was there before is
gone. I made a bug report on this happening for another reason and
someone took it out. Want a picture. Better reply fast. I am going to
swith the internet NIC to the older computer and use it as the gateway.
And switch everything over to the new user with the normal desktop.
>
>
>
>>Two more things:
>>
>>Do you have to run the connection sharing wizard on both computers to get
>>it to work. I did, but it made my 192.168.0.2 address to 192.168.0.1 and I
>>
>
> Of course not. Please read message at the end of drakgw (if someone has
> an idea of a better-meaning message, I take it).
>
> "You may now share Internet connection with other computers on your Local
> Area Network, using automatic network configuration (DHCP)."
Still, even though I ran the wizard first on the gateway computer, it
didn't ask me any address I wanted to share with, so it didn't set up
the firewall to allow it through, so I figured it wasn't working. Even
so, just had to change the address on the one back from 192.168.0.1 that
it made to 192.168.0.2 and then modified the firewall and it worked.
>
>
>
>>had to change it back manually. I think you only need to run it on the one
>>connected, but wasn't sure since it wasn't working because:
>>
>>Shouldn't the connection wizard (maybe a wishlist) as for addresses that
>>are allowed to share, that way it would be necessary to manually do it
>>like I had to?
>>
>
> It had been decided that we should not provide an expert mode in which you
> may choose the private network you wanna use.
Then maybe documentation that the user will have to modify the addresses
in Masq and forward in the firewall scripts would do????
When I find these problems I am not trying to be a pain. I put myself in
someone like my Dad, who has really came a long way in the last few
years on computers. He is helping others with computer problems. He
still won't give Linux a try, cause he thinks it is too hard. So I just
look at them and think: Would he try this or would he call me or give
up. Then I say it is a problem if it is the latter two. I had never done
this before, so it was new to me also, I just know what to look for and
am not afraid to try something.
>
>
>
>
