[Siglinux] Linux networking problem

[Kelly Shutt]

I’m running my slack box as my network connection with my cable modem.  I run two network cards with IP tables to share my connection to my windows machines.  I’m having some trouble with my new switch, and I think it’s a problem with my box but I wanted an outside opinion.  My 10BT hub works fine with my network setup, but when I put in my new 100/10 switch my network will freeze and packets just stop going through.  I’m running Linksys network cards in all my machines and I’m thinking that the problem might lay in the fact that the Linux drivers done by Linksys are just a hacked version of the tulip driver.  I’ve tried running my windows machines in all different network settings including 10BT Half Duplex and it still locks up.  I’ve also noticed that it locks up a lot when I’m doing file transfers through my samba setup, which might also be the problem.  I’m not sure really if it’s a problem with my IP tables setup or my samba setup or what.   Anyone have any ideas on where I should be focusing to fix the problem?  I will include my IP tables script down below so that can be viewed.   Thanks, Kelly Shutt       #!/bin/sh # # rc.firewall - v0.50 # #               Initial SIMPLE IP Masquerade test for 2.4.x kernels #               using IPTABLES # # Load all required IP MASQ modules # #   NOTE:  Only load the IP MASQ modules you need.  All current IP MASQ #          modules are shown below but are commented out from loading. # echo -e "\n\nIPMASQ *TEST* rc.firewall ruleset - v0.50\n"     # The location of the 'iptables' program # #   If your Linux distribution came with a copy of iptables, most #   likely it is located in /sbin.  If you manually compiled #   iptables, the default location is in /usr/local/sbin # # ** Please use the "whereis iptables" command to figure out # ** where your copy is and change the path below to reflect # ** your setup # #IPTABLES=/sbin/iptables IPTABLES=/usr/sbin/iptables     #====================================================================== #== No editing beyond this line is required for initial MASQ testing == # Need to verify that all modules have all required dependencies # echo "  - Verifying that all kernel modules are ok" /sbin/depmod -a   # With the new IPTABLES code, the core MASQ functionality is now either # modular or compiled into the kernel.  This HOWTO compiles ALL IPTABLES # options as modules.  If your kernel is compiled correctly, there is # NO need to manually load the kernel modules. #               #  NOTE: The following items are listed ONLY for informational reasons. #        There is no reason to manual load these modules unless your #        kernel is either mis-configured or you intentionally disabled #        the kernel module autoloader. #     # Upon the commands of starting up IP Masq on the server, the # following kernel modules will be automatically loaded: # ===============================================================   #Load the main body of the IPTABLES module - "iptable" #  - Loaded automatically when the "iptables" command is invoked   #Load the IPTABLES filtering module - "iptable_filter" #  - Loaded automatically when filter policies are activated   #Load the geneal IPTABLES NAT code - "iptable_nat" #  - Loaded automatically when MASQ functionality is turned on   #Load the SNAT IPTABLES "Masq" code - "ipt_MASQUERADE" #  - Loaded automatically when MASQ functionality is turned on   #Load the stateful connection tracking framework - "ip_conntrack" # # This module in itself does nothing without other specific # conntrack modules being loaded as well # #  - Loaded automatically when MASQ functionality is enabled #    to properly MASQ protocols such as IRC, FTP, etc.     #Loads the OUTGOING FTP NAT functionality into the core IPTABLES code  # # Disabled by default -- remove the "#" on the next line to activate /sbin/insmod ip_nat_ftp                   #Load the INCOMING FTP tracking mechanism for the connection tracking #code #        # Disabled by default -- remove the "#" on the next line to activate /sbin/insmod ip_conntrack_ftp       #CRITICAL:  Enable IP forwarding since it is disabled by default since # #           Redhat Users:  you may try changing the options in  #                          /etc/sysconfig/network from: # #                       FORWARD_IPV4=false #                             to #                       FORWARD_IPV4=true #  echo "  - Enabling packet forwarding in the kernel" echo "1" > /proc/sys/net/ipv4/ip_forward     # Dynamic IP users: # #   If you get your IP address dynamically from SLIP, PPP, or DHCP, #   enable this following option.  This enables dynamic-address hacking #   which makes the life with Diald and similar programs much easier. #  echo "  - Enabling dynamic addressing measures" echo "1" > /proc/sys/net/ipv4/ip_dynaddr     # Enable simple IP forwarding and Masquerading # #  NOTE:  In IPTABLES speak, IP Masquerading is a form of SourceNAT or SNAT. #               #  NOTE #2:  The following is an example for an internal LAN address in the #            192.168.0.x network with a 255.255.255.0 or a "24" bit subnet mask #            connecting to the Internet on external interface "eth0".  This #            example will MASQ internal traffic out to the Internet not not #            allow non-initiated traffic into your internal network. # #  NOTE #3:  You must change "eth0" to say "ppp0" if you are a modem user. # #         ** Please change the above network numbers, subnet mask, and your #         *** Internet connection interface name to match your setup  # echo "  - Flushing old IP Tables" $IPTABLES -F   echo "  - Setting the default FORWARD policy to 'ACCEPT'" $IPTABLES -P FORWARD ACCEPT   echo "  - Enabling SNAT (IPMASQ) functionality on eth0" $IPTABLES -t nat -A POSTROUTING -o eth0 -j MASQUERADE   echo -e "\nDone.\n"