Re: [Masq] firewall HElp!!

Dave McFerren Sun, 14 Mar 1999 00:18:15 -0500

John,

I had this same problem.  But apparently, the ip_forward is not set as a default 
in the newer kernels.  You must set it everytime you boot something like this...

echo "1" > /proc/sys/net/ipv4/ip_forward

The ipchains HOWTO has this if you read it carefully.

Dave 


> Delivered-To: [EMAIL PROTECTED]
> From: John Lord <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: [Masq]  firewall HElp!!
> Date: Thu, 11 Mar 1999 10:13:12 -0500
> MIME-Version: 1.0
> X-Mailman-Version: 1.0b9
> List-Id: Linux IP Masquerading - End Users <masq.tiffany.indyramp.com>
> X-BeenThere: [EMAIL PROTECTED]
> 
> 
> OK I had masq working fine on the old kernel (2.0.36) but I upgraded the
> kernel to 2.2.1 and now I cant get it work anymore. I see that I have to use
> ipchains now but I still can get it to work. 
> 
> I have one nic on the internet side lets says 206.158.12.1 and another nic
> on the internal side 192.168.100.1
> 
> here is the config I'm using
> 
> /sbin/depmod -a
> /sbin/modprobe ip_masq_ftp
> /sbin/ipchains -P forward DENY
> /sbin/ipchains -A forward -j MASQ -s 192.168.100.0/24 -d 0.0.0.0/0
> 
> 
> I used to use this and it worked fine untill the kernel change
> 
> /sbin/ipfwadm -F-p deny
> /sbin/ipfwadm -F -a -m -S 192.168.100.0/24 -D 0.0.0.0/0
> /sbin/ipfwadm -F -p masquerade
> 
> Also I would like to transparently redirect http request to the proxy server
> also . Any body got any configuration like this that they could share. I
> need to get this up and running today.
> 
> John Lord([EMAIL PROTECTED])
> Network Administrator
> Byte Size Inc.
> www.beachin.net
> 
> 
> 
> 
> _______________________________________________
> Masq maillist  -  [EMAIL PROTECTED]
> http://tiffany.indyramp.com/mailman/listinfo/masq
> Admin requests can be handled by web (above) or 
[EMAIL PROTECTED]

-----------------------------
Dave McFerren [EMAIL PROTECTED]
System Administrator
Net Solutions, Inc.
816-220-0303 fax 816-220-0333
-----------------------------
"It never hurts to help!" 





_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
Re: [Masq] firewall HElp!!

Reply via email to
