On Fri, Nov 30, 2001 at 10:43:59AM +1100, Anth Courtney wrote: : It has an external ip of 203.13.174.115 on eth0, and an internal ip of : 10.0.0.1 on eth1. It also runs a dhcp server which allocates 10.0.0.x : IP's. It talks to outside computers and the rest of the world without a : problem. : : A workstation behind it is allocated an IP without a problem, and can ping : both the internal and external IP's of the gateway. The workstation only : has eth0. : : However whenever the workstation tries to ping somewhere outside, it : returns a 'destination host unreachable' error. The same happens for : telnet, etc. : : I have just a quick shell script for my firewall atm: : : #!/bin/sh : echo "1" > /proc/sys/net/ipv4/ip_forward : /sbin/iptables -F : /sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
If your machine is configured to have ip forwarding turned on, you don't have to do that echo bit. Also, you're only masq'ing traffic, not permitting any traffic to be forwarded. Check this out: http://www.jasons.org/hacks/iptables-masq.txt -- Jason Costomiris <>< | Technologist, geek, human. jcostom {at} jasons {dot} org | http://www.jasons.org/ Quidquid latine dictum sit, altum viditur. My account, My opinions. _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
