/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
> > /sbin/ipchains -A forward -i eth0 -s 192.168.2.0/24 -j MASQ
>
> This line indicated that it will forward anything received on interface
eth0
> with an address of 192.168.2.0/24. However, this should be an
impossibilty
> as shown by your output of ifconfig:
>
> ># ifconfig
> >eth0 Link encap:Ethernet HWaddr 00:01:02:BF:1E:0E
> > inet addr:6.42.237.111 Bcast:6.42.239.255 Mask:255.255.252.0
> (snip)
>
> As you can see eth0 has your external ip address. As such the only
traffic
> that you will receive on this interface with a 192.168.2.0/24 address
would
> most likely be spoofed.
I don't believe that's his problem - my setup is essentially the same and
works fine.
>From the ipchains man page:
-i, --interface [!] name
Optional name of an interface via which a packet is
received (for packets entering the input chain), or
via which is packet is going to be sent (for pack-
ets entering the forward or output chains).
This is the forward chain so it is the interface by which the packet will be
sent (not received.)
I'd start with no firewall, barebones masquerading, and see if that works.
Then start adding stuff back in and see where it stops working.
John
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
