Use iptables. You're using ipchains...
On Tue, Apr 23, 2002 at 12:24:22PM +0200, Thomas Troeger wrote: > Dear Ramin, > > On Mon, Apr 22, 2002 at 10:16:10PM -0400, Ramin Alidousti wrote: > > What are the rules that you're using now? With a simple DNAT > > you should get what you want. MASQ does not come into the > > picture at all. > > > > Ramin > > The current setup is a modified coyote diskrouter > (www.coyotelinux.com -- great thing :-). The setup is more or less > out-of-the box (kernel 2.2.19, ipchains). > > ipchains -L gives (localnet = 192.168.0.0/16): > Chain input (policy ACCEPT): > Chain forward (policy DENY): > target prot opt source destination ports > MASQ all ------ localnet/16 anywhere n/a > Chain output (policy ACCEPT): > target prot opt source destination ports > REJECT all ------ localnet/16 anywhere n/a > > I've included quite some forwards for things like speakfreely: > ipmasqadm autofw -A -r udp 2074 2075 -h 192.168.0.10 > > I'm not sure if this question is really suitable for iptables (as > it's ipchains, not iptables), but since a lot of guys with network > experience are here (and there's the address of this list mentioned > in the NAT-HOWTO), I've posted to here. Hope this information helps, > sorry for forgetting it =:-| > > --tst.
