Great help Daniel - thanks a lot.
Suse laptop accessed Net fine, so I rebooted it to XP for some maintenance duty.
A bit of fiddling later, & that's online too, but:
1. RH box cannot ping XP (likely an XP firewall/AV setting to be found later) tho XPcan ping RH ok.
2. & this is the big worry:
# iptables -t nat -A POSTROUTING -o EXTIF -s 192.168.0.1/32 -j MASQUERADE can be enabled, but does not actually work, whereas
# iptables -t nat -A POSTROUTING -j MASQUERADE ***is the entry effecting the forwarding share***
NB this is an insecure method & is warned against!
What should I be modifying the first entry to, to make the network secure please?
Regards
Rik
Daniel Grant wrote:
Thanks Daniel,
That's been a big help - a better handle on it gained.
We have two MASQUERADE entries.
Now, why doesn't #iptables -F clear them out?!
it clears out the filter table by default.
or?
[EMAIL PROTECTED] root]# iptables -F POSTROUTING
iptables: No chain/target/match by that name
nearly. Try: iptables -F -t nat to clear all chains on the iptables NAT table iptables -F POSTROUTING -t nat to just clear the POSTROUTING chain
or service iptables stop (the RH script, which resets all policies to accept and deletes all rules in all chains in all tables)
Regards
Daniel
-- InfoHelp Services http://www.infohelp.co.nz/linux.html i686 2.4.20-8
