if you only want nat: echo 1 > /proc/sys/net/ipv4/ip_forward iptables -F iptables -t nat -F iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -d 0.0.0.0/0 -o ppp0 -j MASQUERADE
Whit that you get nat... PS: 192.168.0.0/24 is the local network under eth0... change it if you have other settings On Wed, 2003-02-05 at 16:25, scott wrote: > i'm trying to setup nat, and when adding -j MASQUERADE i get "iptables: > Invalid argument" > > in the kernel i have every netfilter option built-in, and in networking > options i have packet socket, network packet filtering, unix domain sockets, > tcp/ip networking, ip: multicasting, ip: advanced router, ip: policy routing, > ip: tunneling, and ip: multicast routing. > > i've been doing the following: > muffin root # iptables --flush > muffin root # iptables --table nat --flush > muffin root # iptables --delete-chain > muffin root # iptables --table nat --delete-chain > muffin root # iptables -vv --table nat --append POSTROUTING --out-interface > eth1 -j MASQUERADE > MASQUERADE all opt -- in * out eth1 0.0.0.0/0 -> 0.0.0.0/0 > libiptc v1.2.7a. 6 entries, 936 bytes. > Table `nat' > Hooks: pre/in/fwd/out/post = 0/0/0/612/148 > Underflows: pre/in/fwd/out/post = 0/0/0/612/464 > Entry 0 (0): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `'/................ > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 84 packets, 15516 bytes > Cache: 00000000 > Target name: `' [36] > verdict=NF_ACCEPT > > Entry 1 (148): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `eth1'/XXXXX........... > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 5 packets, 780 bytes > Cache: 00000008 IP_IF_OUT > Target name: `' [36] > verdict=296 > > Entry 2 (296): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `eth1'/XXXXX........... > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 0 packets, 0 bytes > Cache: 00004008 UNKNOWN IP_IF_OUT > Target name: `MASQUERADE' [56] > > Entry 3 (464): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `'/................ > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 117 packets, 10100 bytes > Cache: 00000000 > Target name: `' [36] > verdict=NF_ACCEPT > > Entry 4 (612): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `'/................ > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 135 packets, 11444 bytes > Cache: 00000000 > Target name: `' [36] > verdict=NF_ACCEPT > > Entry 5 (760): > SRC IP: 0.0.0.0/0.0.0.0 > DST IP: 0.0.0.0/0.0.0.0 > Interface: `'/................to `'/................ > Protocol: 0 > Flags: 00 > Invflags: 00 > Counters: 0 packets, 0 bytes > Cache: 00000000 > Target name: `ERROR' [64] > error=`ERROR' > > iptables: Invalid argument > > any ideas on what i ought to try or what i might have done wrong would be > greatly appreciated. > -scott > > -- > [EMAIL PROTECTED] mailing list > -- [EMAIL PROTECTED] mailing list
