Hi, I have a cable internet connection on eth0, eth1 and eth2 are my internal networks. The gateway is running kernel 2.4.18 on debian 3.0 prerelease with iptables 1.2.6a.
>From a machine on the eth1 network, I can: 'ping www.tweakers.net' without problems. So resolving and icmp works. I can login into MSN messenger and Jabber but not to ICQ. So part of the connectivity is ok. But I cannot surf the web or receive data from an FTP connection. I tried tons of example scripts but they don't seem to work. Any ideas? This is the script I use for nat: insmod ip_tables insmod ip_conntrack insmod ip_conntrack_ftp insmod ip_conntrack_irc insmod iptable_nat insmod ip_nat_ftp iptables --flush iptables --flush --table nat iptables --delete-chain iptables --table nat --delete-chain iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT iptables --table nat --append POSTROUTING --out-interface eth0 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward # tried this, doesn't work.. #iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -jTCPMSS --clamp-mss-to-pmtu Cheers, Kees
