/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
This MIGHT not be a MASQ problem. I had the same symptoms, and it turned out to be a TCP Wrapper config error. Edit your /etc/hosts.allow and hosts.deny files. Put ALL:ALL in the allow, and rem all lines in the deny file. If this works, then thats your problem. Also after you make any changes to the .allow files there might be a CRON process (hourly, or daily) that resets them back so keep an eye out for that. Hope that helps. - Brian -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Matilainen Sent: Thursday, July 04, 2002 2:51 PM To: [EMAIL PROTECTED] Subject: [Masq] Just a problem... Hi all, it's been long time since I wrote here, because my router worked perfectly ;) OK, I upgraded to RH 7.3. Did all according to this: http://tldp.org/HOWTO/IP-Masquerade-HOWTO/ and I even got it working. The thing is that I can get to internet, irc, ftp and so on from 192.168.90.0, but not from the router itself. And, I can't SSH to the router from LAN, even though SSHD2 is installed. What I'm asking is a few IPTABLES lines which allow SSH connections, allow inbound/outbound TCP-traffic (from the router) (to surf and irc and so on) but not else. So IPTABLES -A INPUT -i eth0 -p TCP -j ACCEPT is not what I want, but a similar line to ipchains which allows acknowledge packets. I hope you understand what I want here :) I tested IPTABLES -A INPUT -i eth0 -o $EXTIF -m state --state ESTABLISHED,RELATED but nothing. And I don't even know all "states"... Any help is appreciated... -Petteri Matilainen _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
