On Sun, 9 Apr 2000, Ray Olszewski wrote:
> The only way I know of to find out if ICMP is enabled is to try to ping.
> (Unless you compiled your own kernel, of course; then you can simply check
> the config file.) "ping 127.0.0.1" is a good test on any reasonably stock
> Linux system.
Yes, this answers my question. Ping 127.0.0.1.works.
> What does "I cannot ping out from the internal machine" mean?
I have 2 computers. #1 is a Red Hat 6.0 Linux box connected via cable
modem (eth0) to the internet. Kernel 2.2.5-22
#2 is a Windows 95 box connected to #1 (eth1) via 10base T w/hub.
I'm attempting to set up IP Masquerading according to the IP Masq. mini
HowTo. #1 works perfectly, both eth cards are detected and working, I
have full internet access, and can ping box #2.
#2 connects to #1 without problem, I can ping, and telnet into #1 no
problem. I cannot ping my provider's DNS server from #2.
> ping 127.0.0.1
> ping localhost
> ping <host's own eth0 IP address>
> ping <some internal LAN IP address>
Yes to all above from #2
> ping <nameserver IP address (from /etc/resolv.conf)>
> ping <gateway IP address (from "route -n")>
No to these from #2
I'm reluctant to include my rc.firewall script because of length.
I will include the commands minus the comments if that helps:
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/ip_dynaddr
/sbin/ipchains -M -S 7200 10 160
/sbin/ipchains -A input -j ACCEPT -i eth0 -s 0/0 67 -d 0/0 68 -p udp
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 10.0.0.0/24 -j MASQ
Thanks
C
--
Charles Farinella
[EMAIL PROTECTED]
-
To unsubscribe from this list: send the line "unsubscribe linux-newbie" in
the body of a message to [EMAIL PROTECTED]
Please read the FAQ at http://www.linux-learn.org/faqs
