/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ apologies for the double-post but the mail looked very unintelligible with all the whitespace removed so i'm putting it all back in for the benefit of your collective eyes :) stoo.. i am having a very (very) similar problem to Jeff who posted the "Re: Fail in "Testing external MASQ ICMP forwarding" using iptables" message not long ago. i am running RH7.1 (no kernel upgrades, nothing beyond the base workstation install) my network setup is as follows: Cable Modem --> [eth0] RedHat Box (Masq) [eth1] --> Switch --> Windows Boxes (Masq Clients) i followed the latest HOWTO pretty much 100%. however, my windows clients cannot ping (or do anything else for that matter) beyond the external interface. ifconfig details are as follows: -------------------------------------------- eth0 Link encap:Ethernet HWaddr 00:D0:70:01:08:71 inet addr:62.253.181.129 Bcast:255.255.255.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:1503 errors:0 dropped:0 overruns:0 frame:0 TX packets:1418 errors:0 dropped:0 overruns:0 carrier:0 collisions:8 txqueuelen:100 Interrupt:12 Base address:0x6000 eth1 Link encap:Ethernet HWaddr 00:D0:70:00:FD:1F inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:31 errors:0 dropped:0 overruns:0 frame:0 TX packets:15 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 Interrupt:10 Base address:0x8000 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:6 errors:0 dropped:0 overruns:0 frame:0 TX packets:6 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 -------------------------------------------- and netstat -rn gives the following output: -------------------------------------------- Kernel IP routing table Destination Gateway Genmask Flags MSS Window irtt Iface 192.168.0.0 0.0.0.0 255.255.255.0 U 40 0 0 eth1 62.253.181.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 40 0 0 lo 0.0.0.0 62.253.181.254 0.0.0.0 UG 40 0 0 eth0 -------------------------------------------- doing "cat /proc/sys/net/ipv4/ip_forward" returns "1", as it should. finally, doing iptables -t nat -L gives: -------------------------------------------- Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination -------------------------------------------- this is using the generic test Masq rc.firewall provided in the Masq HOWTO. does anyone have any idea what's up? i can't see why this refuses to work.. it looks like Masq is enabled, and IP Forwarding is enabled. however, no matter what i try i always fail at the "Testing external MASQ ICMP forwarding" stage of the HOWTO. if anyone has any suggestions (bearing in mind that i'm a newbie) on how to get this working i'd LOVE to hear them as this is driving me mad! thanks in advance! stoo.. _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
