Dear All
Cany anyone help me set up IP masquerading??
I have two machines, one Linux box & one NT box with the Linux box acting
as the gateway.
The linux box is running Redhat 5.1 kernel 2.2.2
It has all the necessary options compiled into the kernel (I think)
I start IP chains as follows
ipchains -P forward DENY
ipchains -A forward -j MASQ 192.168.0.0/24 -d 0.0.0.0/0
The connection is over a modem using pppd/diald to initiate the
connection. Names are resolved using named.
>From the Linux box I can use nslookup to dial out and lookup names. I
can also use lynx to dial out and connect to various sites by name.
However when I try to connect using Netscape on the NT box the following
happens:
The gateway dials and connects to the ISP (tho' this may have been
instigated by named rather than the gateway).
Netscape says it is searching for the IP address of the site which it
seems to find ok ( & this is borne out by the fact that if subsequently I
do nslookup on the Linux box for the same name, it responds with a
non-authorative answer)
However Netscape then reports it is contacting the host and nothing
further happens. Eventually pppd times out and then Netscape reports
that it is unable to contact the host.
Am I right in thinking that this is an IP Masquerading problem, not
named,ppd etc.?
I notice that despite /etc/sysconfig/network having FORWARD_IPV4=yes in
it /proc/sys/net/ipv4/ip_forward is set to 0. Also by going into the
system config utility the default gateway is set 0.0.0.0 and default
gateway device is set to eth0 (on the linux box).
As the linux box is the gateway does it need to be told the default
gateway? Should ip_forward be set to 1? I've tried doing this and it
seems to make no difference.
Any help would be much appreciated.
Paul
