/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ Hi Guys, Sorry to bother you all. Please e-mail me directly as I am not on the list yet. I have read the Ip Masquerade Howto. I am having a problem to get my modem to dial out automatically when the other pc wants to browse the Internet - Hope you can help me with this issue. Samba is setup and both PC's can see each other on the Network. I am only have 2 pc's on the network. I am using a 3Com US Robotics 56k Voice Fax Modem on COM 2. I can dial out from the Linux Box using the redhat PPP dialer from KDE. I am having some problems sharing my modem on my Linux Box for a Windows NT Workstation. I am using Red Hat 7 Standard Edition with a kernel release of 2.2.16-22 My Linux box's IP address is 172.16.1.1 and my NT Box's IP address is 172.16.1.2 I have downloaded a Diald RPM but it is a Mandrake RPM I can see both pc's but when I go to my Windows Box I can not go onto the World Wide Web, in other words the Linux box does not dial a connection to the Internet from the Linux Box. I am not using a static IP address for my modem for my Internet Connection ie my ISP assigns me my DNS Server and IP address. my rcfile looks like follows I have saved it in the /etc/rc.d/rc.firewall #!/bin/sh # # rc.firewall - Initial SIMPLE IP Masquerade test for 2.1.x and 2.2.x kernels using IPCHAINS # # Load all required IP MASQ modules # # NOTE: Only load the IP MASQ modules you need. All current IP MASQ modules # are shown below but are commented out from loading. # Needed to initially load modules # /sbin/depmod -a # Supports the proper masquerading of FTP file transfers using the PORT method # /sbin/modprobe ip_masq_ftp # Supports the masquerading of RealAudio over UDP. Without this module, # RealAudio WILL function but in TCP mode. This can cause a reduction # in sound quality # #/sbin/modprobe ip_masq_raudio # Supports the masquerading of IRC DCC file transfers # #/sbin/modprobe ip_masq_irc # Supports the masquerading of Quake and QuakeWorld by default. This modules is # for for multiple users behind the Linux MASQ server. If you are going to play # Quake I, II, and III, use the second example. # # NOTE: If you get ERRORs loading the QUAKE module, you are running an old # ----- kernel that has bugs in it. Please upgrade to the newest kernel. # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960 # Supports the masquerading of the CuSeeme video conferencing software # #/sbin/modprobe ip_masq_cuseeme #Supports the masquerading of the VDO-live video conferencing software # #/sbin/modprobe ip_masq_vdolive #CRITICAL: Enable IP forwarding since it is disabled by default since # # Redhat Users: you may try changing the options in /etc/sysconfig/network from: # # FORWARD_IPV4=false # to FORWARD_IPV4=true # echo "1" > /proc/sys/net/ipv4/ip_forward #CRITICAL: Enable automatic IP defragmenting since it is disabled by default in 2.2.x kernels # # This used to be a compile-time option but the behavior was changed in 2.2.12 # echo "1" > /proc/sys/net/ipv4/ip_ip_always_defrag # Dynamic IP users: # # If you get your IP address dynamically from SLIP, PPP, or DHCP, enable this following # option. This enables dynamic-ip address hacking in IP MASQ, making the life # with Diald and similar programs much easier. # echo "1" > /proc/sys/net/ipv4/ip_dynaddr # MASQ timeouts # # 2 hrs timeout for TCP session timeouts # 10 sec timeout for traffic after the TCP/IP "FIN" packet is received # 160 sec timeout for UDP traffic (Important for MASQ'ed ICQ users) # /sbin/ipchains -M -S 7200 10 160 # DHCP: For people who receive their external IP address from either DHCP or BOOTP # such as ADSL or Cablemodem users, it is necessary to use the following # before the deny command. The "bootp_client_net_if_name" should be replaced # the name of the link that the DHCP/BOOTP server will put an address on to? # This will be something like "eth0", "eth1", etc. # # This example is currently commented out. # # #/sbin/ipchains -A input -j ACCEPT -i bootp_clients_net_if_name -s 0/0 67 -d 0/0 68 -p udp # Enable simple IP forwarding and Masquerading # # NOTE: The following is an example for an internal LAN address in the 192.168.0.x # network with a 255.255.255.0 or a "24" bit subnet mask. # # Please change this network number and subnet mask to match your internal LAN setup # /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -s 172.16.1.0/24 -d any/0 -j MASQ I also typed out the following line chmod 700 /etc/rc.d/rc.firewall I added the following line to the rc.local file in /etc/rc.d/rc.local echo "Loading the rc.firewall ruleset.." /etc/rc.d/rc.firewall I hope that you can help me and get my Linux Box sharing my Modem for my NT Workstation PC. Please mail me directly as I am not on the e-mail list. My e-mail address is [EMAIL PROTECTED] Please help. Thanks in advance Lee _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
