On Wed, 2002-07-03 at 16:25, Marvin Pascual wrote:
> > No. Mandrake must have a setup tool for this.
>
> Kaya nga eh.
in your original email, you said that the headless box (which has
the modem connected to it) can ping outward, but the LTSP server
(which is behind the headless box) can't. have you got that
working yet? my suggestion (because this is what i tend to do):
first get things working with just command line work, then clean
it up later (as sacha says, with the appropriate entries in
/etc/sysconfig/*). although i tend not to touch /etc/sysconfig/*
directly, instead using linuxconf or webmin to manage that, unless
i get tired of that and just hack up some stuff to put in
/etc/rc.d/rc.local).
what i tend to do is first get the individual pieces
working using the command line. then later i clean up how i set it
up, as necessary. but that's because i tend to prefer the command
line anyway.
all of the following assumes Mandrake since that's what i've got
on my notebook and you state that's what you've got. i've got
Mandrake 8.2.
first of all, we need to make sure the LTSP server can be NATted
outward. set the LTSP's gateway to be the headless box. on the
LTSP server do:
route add default gw 192.168.1.1
next the headless box needs to NAT internal requests outward.
the following are minimums. you'll want to add other firewall
rules and also make the minimum setup more secure. do these
on the headless box.
# enable ip forwarding
echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
# assuming your ppp device is ppp0, then enable NAT on that device.
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
warning: that setup is very open. you will want to clean that up
after you've got masquerading working. i suggest using that
initially though, just until masquerading is working.
once you've got masquerade up and running, then you can work on
cleaning up the firewall rules and getting the other stuff working...
later, you might want to put the masquerade rule in the relevant
/etc/ppp/ip-up and ip-down (or ip-up.local and ip-down.local or
whatever) scripts. that way, the masquerade rule will be added
whenever ppp goes up and removed whenever ppp goes down.
tiger
--
Gerald Timothy Quimpo tiger*quimpo*org gquimpo*sni*ph tiger*sni*ph
The more you complain, the longer God lets you live.
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
