Hi,
I put the MASQUERADING rules in the startup script for the computer and use
them all the time (rather than when diald starts). In this configuration you
have to refresh the windows browsers a few times for the link to comeup
(without using the linux box at all) and for then to get a connection onto
the web...
This seems to work fine. Execpt for the fact that windows computers can have
the nasty habit of making NameServer requests even when not browsing and so
causing diald to try and bring the link backup.. The only way I have found
to stop this is to unplug the modem or kill diald.
NB: I start both diald and the MASQUERADING rules at boot time.
Chris
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Demetre Ch.
> Valaris
> Sent: 21 November 1999 14:55
> To: [EMAIL PROTECTED]
> Subject: Diald with IP-MASQUERADING
>
>
> Hello all,
>
> Is anyone in the list running DIALD using IP MASQUERADING?
> I would appreciate any help.
> Here is my setup.
>
> My DIALD Gateway is a LINUX BOX (kernel 2.2.10) and I use DIALD 0.99
> I use a DYNAMIC PPP Link to my ISP so my LINUX does not have a static
> IP ADDRESS on the PPP interface. So I use 192.168.0.1 for the initial
> local sl0 interface and 192.168.0.2 for the remote.
>
> I also have another 2 Windows 98 Boxes in the house for the rest of the
> family to use. They are all connected via Ethernet cards and they can
> talk to each other. All the boxes have ip addresses in the
> 44.154.x.x region
> for their ETHERNET CARDS.
>
> When I run DIALD and also activate the IP masquerading, the first attempt
> from the WINDOWS BOXES to access a URL on internet fails, because
> when the link comes up, the WINDOWS BOXES does not know what to
> masquerade as.
> The link comes up though and when I press the RERFESH button, my WINDOWS
> boxes can now masquerade as the IP ADDRESS my LINUX BOX got from my ISP
> and I can get to Internet OK.
>
> What I cannot do is have a script (or a set of scripts) that will
> first send
> UNMASQUERADED packets to interface sl0, bring up the link and then
> activate IP MASQUERADING. After a period of inactivity, the link should
> come down and the IP MASQUERADING RULES removed.
> I tried to use the addroute and delroute option on the file
> /etc/diald.conf
> as the README.masq suggests (this file comes with DIALD 0.99) and
> I also tried
> to put the IP MASQERADING RULES in the script ip-up and ip-down,
> but no joy.
> The commands:
>
> /sbin/ipchains -P forward DENY
> /sbin/ipchains -A forward -s 44.154.125.8/255.255.255.248 -j MASQ
>
> are not executed if I put them in /etc/ppp/ip-up script and if I use the
> addroute option in /etc/diald.conf they seems to be executed when the
> DIALD daemon comes up (i.e. at boot time), so they are always there.
>
>
> PLEASE HELP. If anyone has a working set of scripts/instructions I would
> appreciate it very much if he could share them with me.
>
>
>
> 73 Demetre SV1UY
>
> Demetre Ch. Valaris - SV1UY,
> IP Coordinator for AMPRnet in Greece.
> e-mail: [EMAIL PROTECTED]
> PBBS MAIL: [EMAIL PROTECTED]
> ---------------------------------------------------------
> Visit Athnet's WEB SERVER at http://www.athnet.ampr.org
> or my homepage at http://www.athnet.ampr.org/~sv1uy
> or my MIRROR page at http://users.forthnet.gr/ath/sv1uy
> Need a PLUG & PLAY JNOSKIT? Try my homepage!
> ---------------------------------------------------------
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-diald" in
> the body of a message to [EMAIL PROTECTED]
>
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
