This may be more of a question for a masq list but since masq can be an
integral part of a firewall, I'm asking here (and I cannot seem to find
a masq list. Let me know if you know of one).
This is my first firewall. It is a Red Hat Linux 6.0 box with kernel
2.2.14. I started with the Firewall howto, moved to the masquerading
howto when it told me to, and then finished off with the rest of the
firewall howto. Everything seemed to be working great. I then moved to
the IP chains howto and was going to work with some port forwarding. I
changed the ip of the test machine to the ip of the web server (from
192.168.2.50 to 192.168.2.130) that will be behind the firewall when I
am finished and all of the sudden it seems i have no masq running. Here
is what I have found through further testing:
IP's below 192.168.2.60 work fine
-- test machine can ping the outside world
-- firewall can ping test machine
IP's above 192.168.2.70 do not work
-- test machine cannot ping outside world
-- firewall cannot ping test machine
The rc.firewall script I am using is basically a cut and past of the one
found in the ip masquerading howto changed to reflect the correct ip
information for the firewall. The lines that enable ip forwarding and
masquerading are:
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.2.0/24 -j MASQ
Thanks. Let me know if I have left out any pertinent information.
--
Quintin Holmberg
Anlon Systems, Inc.
[EMAIL PROTECTED]
Minnesota State University, Mankato
Association For Computer Machinery Student Chapter Chair
[EMAIL PROTECTED]
icq# 60699066
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
