Chris Stokes was once rumoured to have said:
> I am setting up a RH7 machine with 2 nic's one to a private address and one
> to a telstra ADSL. I have the ADSL working and can ping and browse external
> addresses as well as ping internal addresses. I then tried to set up masq
> and test connecting from another internal machine - no luck. After checking
> the RH7 machine I have noticed a few weird things.
[SNIP]
Gus, Rebecca Richards and myself have all commented upon the topic of
Linux + ADSL with Telstra.
Rebecca and myself have lightning guides to getting this all running:
Rebecca's PPPoE guide:
* http://www.becsta.net/adsl.html
My Linux 2.4 native PPPoE guide:
* http://kitsumi.xware.cx/tech/adsl-2.4.html
Neither of us cover routing or firewalling in any great deal, but the
important points with RH7 are:
* Have you enabled ip_forwarding in your /etc/sysctl.conf file?
you should have a line that reads:
net.ipv4.ip_forward = 1
* [2.2] Are your ipchains rules correct? Remember, -i (interface) applies
to the outgoing interface in the forwarding chain. Also remember that your
MASQ rule should only apply to outgoing [local -> world] packets, not the
reverse since they're automagically handled by MASQ.
* [2.4] Are your iptables rules correct? your -j MASQUERADE rules should be
on your POSTROUTING chain in the nat tablespace. Does your FORWARD chain
in filter permit packets to reach your local subnet post-nat?
* [RP PPPoE] Have you enabled MSS Clamping?
* [2.4 PPPoE] Have you compiled and installed TCPMSS for iptables?
are you using it correctly? Do your hosts behind your router support
PMTU discovery? You need ICMP transmission for PMTU discovery to work.
This all just scrapes the surface of the iceberg, but hopefully should be enough to
get you going.
C.
--
--==============================================--
Crossfire | This email was brought to you
[EMAIL PROTECTED] | on 100% Recycled Electrons
--==============================================--
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
