Georg Kaufmann wrote:
> I have a win95 box on my local net with the rh5.0 box as the
> server. I can get to some sites on the internet by using the
> network address of the sites, but it appears only those on the
> same cable company router subnet (ie: 199.288.58.*). However,
> none of these sites can be reached by name and I cannot get
> beyond the cable company network via network address or
> name (ie: neither www.netscape.com or 198.95.249.78).
On rethinking this one after almost finishing the response -- By get to,
do you mean 'ping' or can you connect somehow? Sounds like You aren't
masquerdaing, you're routing. Your linux computer is passing your
windows box local network IP out onto the cable net, but their router is
recognizing the IP to be illegal and not passing it on. Do an 'ipfwadm
-l -F' , check your ipfwadm rules, and make sure pseudo IP numbers go to
the ethernet that the WIN95 box is on and not to the ethernet connected
to the cable modem. OMG, you do have two ethernet cards don't you? I
didn't think to ask and rereading your original message doesn't say.
Isn't the cable modem an external connected by ethernet? Is it a
separate ethernet from the WIN boxes? (you could have the cable modem on
one ethernet with both the linux box's ports, but you wouldn't be real
popular with any data neighbors on the cable as ALL your packets spilled
out onto the local cable.Bye-bye bandwidth) The linux box has to send
the masqueraded data to another port and a separate physical ethernet
because the cable modem is promiscuous. You could/should force it to go
through the linux box with gateway settings, but every packet would go
out both before and after translation.
>
> What have I missed? How can I check the CONFIG_IP_MASQUERADE
> flag in the kernel, or is that even the problem.
>
Easier to check the /proc/net directory. If you have IPmasq enabled, the
IP-Masq entries will be there even if empty. If not enabled, they won't.
> I also have a weird situation where I can ping to the cable companies
> router, but only if the linux server has tcpdump -i eth1 running. I
> turn dump off, the ping times out. I must have something screwed up
> in here. Thanks for any help!
>
I don't think you do have an off local lan DNS for the Win95 box. I
suspect that when the linux box is connected to the other, it is making
its cache of addresses in use visible to the other prcoess to look up
in. Probably a coincidence not a design. This one could also be related
to an error in your ipfwadm rules.
--
Chris Ness
mailto:[EMAIL PROTECTED] All jobs are equally easy to
http://www.vivid.net/~gloster the person not doing the
work.
Holt's Law
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
