[masq] general masq setup questions

[Harondel J. Sibble]

Folks, I need some troubleshooting help with ipmasq.

Here is a a bit of the setup:

486 ipmasq/firewall box with 2 nics isa nics installed running redhat 5.0, eth0 
goes to the internal network (192.168.1.xxx) while eth1 goes to the net via my 
adsl connection (DHCP).  A bunch of windows machine  routed through  a 
multihomed Linux file server using ipforwarding are also connected to this 
firewall/ipmasq box. 

Just to do a quick trial I followed what I saw at 
http://www.infoworld.com/cgi-bin/displayNew.pl?petrel/980406np.htm

and set the 486 ipmasq box with just a win98 client machine connected 
directly to it.  The 98 box has the ip address of eth0 (192.168.1.2) as its default 
gateway and the 98 box is assigned 192.168.1.6

I am able to use the ip addresses to ping eth0 from the 98 box and ping the 98 
box from the linux box. 

Now I enter the rules below

ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.1.0/24 - D  0.0.0.0/0

all the F, I, and O rules has been cleaned out previously as I was working 
through the firewall setup chapter in Linux Network Toolkit by Paul G. Sery 
(absolutely excellent book by the way for any new to linux folks)

this sort of works as I can ping the outside world fine from the masq machine 
and ping the 98 box also. I can even ping eth1 from the 98 box by typing its 
dhcp assigned address. Now the problem is that I cannot get out to the net 
from the 98 box.

The /etc/hosts file on the ipmasq box lists all the names and ip's for the other 
internal network machines. The name and domain of the ipmasq box are 
thecomputer.thehouse.com. The hosts.sam file on the 98 box has the same 
info as in the /etc/hosts file on the linux box. The 98 box is pointed towards the 
linux box for DNS info (a la /etc/hosts) and the 98 box is called 
win98.thehouse.com (these names are all made up, but you get the idea)


Suggestions on what I am missing here please. I suspect it is something quite 
simple that I am overlooking.

TIA


Cheers
Harondel J. Sibble
[EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]