Please help me before I go mad!
I'm trying to set up a firewall using Mandrake 6.0 (Venus). I can reach
the internet when I'm working on the firewall. The IP has been obtained
through DHCP.
I started linuxconf and enabled Linuxconf network access for a machine
with IP 10.0.0.2. The internal card of the firewall has address
10.0.0.1.
This works fine and gives me the advantage I don't have to run from one
computer to the other for testing.
Then I went into Control files and systems, Configure Linuxconf modules
and added firewall rules configuration. default init runlevel
configuration and motd - Message Of The Day configuration are the only
other checked items.
Through the Control panel I restarted linuxconf.
Then I started configuring Routing and gateways. Under Set Defaults I
enabled Routing. I don't know what to fill in for the default gateway
though. On the client machine I would enter 10.0.0.1, but this is the
firewall. I tried with my external IP-address to no avail. I also
changed the last byte to 0 and to 255. Then I tried with 127.0.0.1 and
with leaving the field empty. Always activating the configuration and
seeing if I could ping out.
This was after I enabled forwarding rules in Firewalling defaults
(packet filtering). The rule I set was:
Forward firewalling
This rule is active: checked
Rule's policy: Accept
Do masquerading: checked
Protocol: all
>From
Host or Network: 10.0.0.0
Netmask: 255.255.255.0
Port range: empty
Other ports: empty
Interface: Any
To
Host or Network: 0.0.0.0
Netmask: again I don't know what to fill in here, so I tried with
nothing, class A, class B and Class C netmasks
Port range: empty
Other ports: empty
Interface: any
The only firewall rules that are active are the forwarding rules.
>From the internal workstation I can ping myself: 10.0.0.2, the firewall
10.0.0.1 and the outside card on the address administered by the DHCP
server. I can't ping the name servers nor any other host on the subnet.
Does anybody have a clue why I can't seem to get this to work.
Many thanks in advance,
Jo
