On Mon, Oct 16, 2000 at 02:46:11PM +1000, Alister Waller wrote:
> According to the REDHat Linux Bible (6.1) it says to add the following to
> /etc/rc.d/init.d/network (page 555)
> after
>
> case "$1" in
> start)
> ipv4_forward_set
>
> ipchains -P forward DENY
> ipchains -A forward -s 192.168.26.0/24 -j MASQ
>
> In redhat 6.2 ipv4_forward_set is not in the network file and does not show
> up on my system using find.
>
> I did some looking around and found in /etc/rc.d/init.d an ipchains file. I
> guessed that this would be run at startup, but I don't know linux well
> enough to know this for sure.
> I added a file called /etc/sysconfig/ipchains and added in the two ipchains
> lines from above....minus the ipchains bit of course.
>
> if I now run /etc/rc.d/init.d/ipchains start it reads my
> /etc/sysconfig/ipchains file and does not give any errors so I guess this
> part is OK.
>
> OK....if I
> cat /proc/sys/net/ipv4/ip_forward
> i get a 0, not the 1 that I need.
Look at the file /etc/sysctl.conf -- introduced in Red Hat 6.2. You will
see a flag there (net.ipv4.ip_forward) that you can set to 1 for turning
on this proc entry at boot time.
NOTE: Change the comment above the flag when you do this, because
otherwise it will be false. The comment, rather than explaining what the
flag does, explains what the current state does. Very dangerous!
Hope this helps,
Malcolm
--
Malcolm Tredinnick email: [EMAIL PROTECTED]
CommSecure Pty Ltd
PGP signature
