This is more on-topic for PLUG (Linux Mailing List so
I'm cc:ing there).

Your rules are only masquerading for the eth0
interface. Packets coming through the ppp0 interface
for your PPP link are untouched.

You will need to add the FORWARD rule at
/etc/ppp/ip-up (ip-up.local for Red Hat systems) since
at boot time, the ppp0 interface does not exist.  Hope
this helps.

--- Bill $ Gates <[EMAIL PROTECTED]> wrote:
> i would like ask the help of this community with a
> small problem i have.
> 
> Currently i have a 2.4 linux box that handles ip
> masquerading for my home/neighborhood LAN.  it has
> the address of 192.168.101.1 and is the gateway for
> all other machines in my LAN.  the iptables script
> that i am now using is as follows:
> 
> 
> --begin--
> #!/bin/sh
> 
> 
> 
> IPTABLES=/usr/local/sbin/iptables
> /sbin/depmod -a
> 
> echo "1" > /proc/sys/net/ipv4/ip_forward
> 
> 
> 
> echo "  - Enabling dynamic addressing measures"
> echo "1" > /proc/sys/net/ipv4/ip_dynaddr
> 
> 
> $IPTABLES -P INPUT ACCEPT
> $IPTABLES -F INPUT 
> $IPTABLES -P OUTPUT ACCEPT
> $IPTABLES -F OUTPUT 
> $IPTABLES -P FORWARD DROP
> $IPTABLES -F FORWARD 
> 
> $IPTABLES -A FORWARD -i eth0 -o eth1 -m state
> --state ESTABLISHED,RELATED -j ACCEPT
> $IPTABLES -A FORWARD -i eth1 -o eth0 -j ACCEPT
> 
> 
> $IPTABLES -A FORWARD -j LOG
> 
> $IPTABLES -t nat -A POSTROUTING -o eth0 -j
> MASQUERADE
> 
> 
> 
> echo -e "\nDone.\n"
> 
> 
> --end--
> 
> my question is how do i make a dial in ppp user be
> able to make use of the gateway to access the
> internet also?  the LAN machines in my subnet all
> are able to use the internet via my gateway, but it
> is just the dial in ppp users that i can't seem to
> provide a connection for.  i have a few users that
> can connect to me using their windows dial up
> networking but their packets cant seem to go through
> the gateway even if i have explicitly named
> 192.168.101.1 as the gateway and manually configured
> the correct DNS ip numbers.
> 
> thank you very much for anybody who might be able to
> help.
> 
> ramon de la paz
> 
> __________________________________
> www.edsamail.com
> _______________________________________________
> ph-isp mailing list
> [EMAIL PROTECTED]
> http://lists.q-linux.com/mailman/listinfo/ph-isp


=====
Miguel A.L. Paraz
Metro Manila, Philippines
Mobile: +639164237922

__________________________________________________
Do You Yahoo!?
Send FREE Valentine eCards with Yahoo! Greetings!
http://greetings.yahoo.com
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]

To subscribe to the Linux Newbies' List: send "subscribe" in the body to 
[EMAIL PROTECTED]

Reply via email to