Martin Krzywinski wrote:
> I'm starting to fiddle with ipchains. I'm masquarading
>
> router --- [x.x.199.193]FIREWALL[10.1.1.1] --- private network
>
> A few things aren't working. For example, I can't ftp out of the private
> clients. The connection is made but the server complains about port
> numbers. I guess there's something screwy in the masquerading setup.
> Telnet and browsing work fine. Http downloads work fine.
>
> I've got
>
> ipchains -A forward -j MASQ
>
> added, but just that for now.
Don't do that. Use:
ipchains -A forward -s 10.1.1.1/24 -j MASQ
or
ipchains -A forward -i eth0 -j MASQ
instead. You don't want to be masquerading *inbound* connections.
--
Glynn Clements <[EMAIL PROTECTED]>
- IP Chains and port forwarding Martin Krzywinski
- Re: IP Chains and port forwarding greg
- Re: IP Chains and port forwarding greg
- Re: IP Chains and port forwarding leaf
- RE: IP Chains and port forwarding Moonshi Mohsenruddin
- Re: IP Chains and port forwarding Catalin BOIE
- RE: IP Chains and port forwarding Moonshi Mohsenruddin
- Re: IP Chains and port forwarding leaf
- Re: IP Chains and port forwarding Glynn Clements
- Re: IP Chains and port forwarding Lauri Tischler
- Re: IP Chains and port forwarding Glynn Clements
- Re: IP Chains and port forwarding kiko
- Re: IP Chains and port forwarding Mike Martin
- Re: IP Chains and port forwarding Robbie Scherer
- RE: IP Chains and port forwarding Robbie Scherer
- Re: IP Chains and port forwarding Robbie Scherer
