-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Neogi,
Would you like to try using ipfwadm-wrapper? It is easier to setup and
it was hacked (patched) to work on kernel 2.2.x. I tried that on a LIVE
network and upon executing the rules from a shell command, it works
effortlessly.
Try it!
- --Moonshi
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Nehali Neogi
> Sent: Saturday, July 31, 1999 9:26 PM
> To: [EMAIL PROTECTED]
> Subject: Re: ipmasquerade and kernel 2.2.x
>
>
> Thanks to all those who replied to my question. I tried all
> suggestions
> but it still doesn't work! I'm completely stumped!!!
>
> Again, my problem is IP masq works ONLY after I ping all the hosts on
> my HOME LAN from firewall(gateway) system. I have to do the ping
> everytime my gateway system is rebooted!! Looks like ping
> somehow wakes
> up IP masq function.
>
> Chris,
> 1. Yes I did make sure that I do:
> echo "1" > /proc/sys/net/ipv4/ip_forward.
> Although, I didn't have to do that because I had it set in
> /etc/sysconfig/network file.
>
> Moonshi,
> 2. I installed RedHat 6.0 from scratch to eliminate any kernel
> incompatibility issues.
>
>
> Adams,
> 3. I also used the following command with added "-d" option.
>
> ipchains -A forward -s 192.168.1.0/24 -d 0.0.0.0/0 -j MASQ
>
> Thanks in advance,
>
> --Nehali
> --- Nehali Neogi <[EMAIL PROTECTED]> wrote:
> > Hi,
> > I recently upgraded my kernel from 2.0.36 to 2.2.5
> > and also moved from
> > ipfwadm to ipchains. My firewall system has two
> > interface one to my ISP
> > (mediaone) and other to my home LAN (192.168.0)
> >
> > Here are my rules in the forward chain (added in
> > rc.local):
> > ipchains -P forward DENY
> > ipchains -A forward -s 192.168.1.0/24 -j MASQ
> >
> > Also set FORWARD_IPV4= yes in
> > /etc/sysconfig/network.
> >
> > My problem is every time my system reboots, I have
> > to manually "ping"
> > all the hosts on my LAN from the firewall machine.
> > Only after I do
> > that, IP masquerading works. Any ideas why?
> >
> > Thanks in advance,
> > Nehali
> >
> > _____________________________________________________________
> > Do You Yahoo!?
> > Free instant messaging and more at
> > http://messenger.yahoo.com
> >
> > -
> > To unsubscribe from this list: send the line
> > "unsubscribe linux-net" in
> > the body of a message to [EMAIL PROTECTED]
> >
>
> _____________________________________________________________
> Do You Yahoo!?
> Free instant messaging and more at http://messenger.yahoo.com
>
> -
> To unsubscribe from this list: send the line "unsubscribe
> linux-net" in
> the body of a message to [EMAIL PROTECTED]
>
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.0.2i
iQA/AwUBN6KP22efe0TVuy5lEQIOvACgmow4+0p8E7+4CZ605Whgdti1990Aniia
BQgjQJmcW1HUJOct+LyI4Vrl
=HikH
-----END PGP SIGNATURE-----
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
