Wait... something's wrong here.... (oh crap, after looking carefully at the mail I sent last, I noticed the following... According to the instructions, you would have ended up with the LOG target AFTER the first DROP target because of the -I insert option instead of -A... my bad... but that also raises the question: Why the hell are the packets below getting dropped?)
Okay, try this: iptables -F FORWARD iptables -P FORWARD DROP iptables -A FORWARD -i eth0 -s 192.168.0.0/16 -d ! 192.168.0.0/16 -j ACCEPT iptables -A FORWARD -i eth1 -d 192.168.0.0/16 -j ACCEPT iptables -A FORWARD -i eth0 -j LOG iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE And send the log again if it doesn't work. This time you don't have to send so many lines, just dmesg | tail -n 40 should be enough. W On Mon, Apr 25, 2005 at 10:44:01PM +0600, askar ... wrote: > > After that, try connectin to the internet with the Windows box again. > I did all things you wrote. But still fails to connect the internet > from Windows box > > > After it failed, either > > # dmesg > > or > > # tail -n 60 /var/log/kernel/current > > And show us the output. > #tail -n 60 /var/log/kernel/current had error 'tail: cannot open > `/var/log/kernel/current' for reading: No such file or directory'. > #dmesg result (sorry - it is very long) is: > 0.250 DST=64.12.163.132 LEN=48 TOS=0x00 PREC=0x00 TTL=127 ID=2056 DF > PROTO=TCP SPT=3669 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 > Dropped forwarded packets:IN=eth0 OUT=ppp0 SRC=192.168.0.250 > DST=64.12.163.132 LEN=48 TOS=0x00 PREC=0x00 TTL=127 ID=2057 DF > PROTO=TCP SPT=3669 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 -- ---------------------------------------------------------------- * Address: 45 Spelman Hall, Princeton University 08544 * * Phone: x68958 AIM: AngularJerk * * E-mail: [EMAIL PROTECTED] From: sep.dynalias.net * ---------------------------------------------------------------- "So for the physical pendulum you think of some irregular object, perhaps an eggplant. An eggplant wouldn't be terribly frictionless, but we do what we can." ~DeathMech, S. Sondhi. P-town PHY 205 Sortir en Pantoufles: up 14 days, 4:00 -- [email protected] mailing list
