http://metalab.unc.edu/LDP/HOWTO/mini/IP-Masquerade.html
"Rogers, Paul" wrote:
>
> Dear All
>
> Cany anyone help me set up IP masquerading??
>
> I have two machines, one Linux box & one NT box with the Linux box acting
> as the gateway.
>
> The linux box is running Redhat 5.1 kernel 2.2.2
>
> It has all the necessary options compiled into the kernel (I think)
>
> I start IP chains as follows
>
> ipchains -P forward DENY
> ipchains -A forward -j MASQ 192.168.0.0/24 -d 0.0.0.0/0
>
> The connection is over a modem using pppd/diald to initiate the
> connection. Names are resolved using named.
>
> >From the Linux box I can use nslookup to dial out and lookup names. I
> can also use lynx to dial out and connect to various sites by name.
>
> However when I try to connect using Netscape on the NT box the following
> happens:
>
> The gateway dials and connects to the ISP (tho' this may have been
> instigated by named rather than the gateway).
>
> Netscape says it is searching for the IP address of the site which it
> seems to find ok ( & this is borne out by the fact that if subsequently I
> do nslookup on the Linux box for the same name, it responds with a
> non-authorative answer)
>
> However Netscape then reports it is contacting the host and nothing
> further happens. Eventually pppd times out and then Netscape reports
> that it is unable to contact the host.
>
> Am I right in thinking that this is an IP Masquerading problem, not
> named,ppd etc.?
>
> I notice that despite /etc/sysconfig/network having FORWARD_IPV4=yes in
> it /proc/sys/net/ipv4/ip_forward is set to 0. Also by going into the
> system config utility the default gateway is set 0.0.0.0 and default
> gateway device is set to eth0 (on the linux box).
>
> As the linux box is the gateway does it need to be told the default
> gateway? Should ip_forward be set to 1? I've tried doing this and it
> seems to make no difference.
>
> Any help would be much appreciated.
>
> Paul
