/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ I'm not a guru, but this ipchians stuff is pretty easy to set up, and it's been working for EVER now. After a power outage last week it has since STOPPED working to a degree, here is the info: running: kernel 2.2.13 ipchains 1.3.8, 27-Oct-1998 We have a private net with 10.17.68.* addresses, we use the gateway with ipchians rules to masquerade everyone to 198.162.*.* for email ipchains -A forward -s 10.17.68.0/255.255.255.0 -d 198.162.11.0/255.255.255.0 -j MASQ - that still works! We masq everyone from 198.162.*.* to a certain machine on our side ipchains -A forward -b -s 10.17.68.14/255.255.255.255 -d 198.162.0.0/255.255.0.0 -j MASQ - that still works. We have about 5 rules to forward certain IP's on our side to a server on the other side (here's one example) ipchains -A forward -b -s 10.17.68.52/255.255.255.255 -d 198.162.205.26/255.255.255.255 -j ACCEPT - this is NO longer working. My question is, does that last rule do something different that would make it seem like the IP of the gateway is not actually the one trying to connect to the server 198.162.205.26, meaning that the packets go to a router or something who's settings could have been wiped by the power outage if they were not saved to eprom? Or, is there something in my setup maybe that has gone awry that I am overlooking? I don't understand enough about network topologies and what happens to the packets when masq'ing or forwarding... If you could write back to [EMAIL PROTECTED] it'd be muchly appreciated. I've read all the FAQ's and man pages I could find... did the echo 1> /proc/files (which is already done when you run ipchains - rc.local contains all rules). Thanks anyone! -------------------------- Christopher M. Richardson (w) 506-444-5901 mailto:[EMAIL PROTECTED] _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
