On Sat, 19 Aug 2000, Stephen E. Hargrove wrote:
> Okay, I've taken everyone's recommendations to heart concerning eth0,
> eth1 and my private network. I can access all machines locally, but IP
> Masquerade isn't working (i.e., I can't ping outside of 192.168.2.0
> UNLESS I'm working from 192.168.2.1, in which case I can access both the
> private network and the Internet). I've set up the following:
>
> eth0: 192.168.2.1
> eth1: 192.168.1.10
>
> 192.168.2.x is now my private network. 192.168.1.x relates to the
> outside world. eth1 is set to 192.168.1.10 because it connects to my
> DSL modem/router which is set to 192.168.1.254.
<snip>
> /etc/rc.d/rc.dsl contains my ipchains commands for setting up IP
> Masquerade. In addition to the normal IP Masq commands (/sbin/depmod
> -a, /sbin/modprobe ip_masq_ftp, etc.), the following is executed:
> /sbin/ipchains -P forward DENY
> /sbin/ipchains -A forward -s 192.168.1.10/24 -j MASQ
Here is your problem. You are masquerading the *internal* network which is
192.168.2.x So, try
/sbin/ipchains -A forward -s 192.168.2.0/24 -j MASQ
hth
charles
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
