iptables problem
- From: Yvan@office <me@xxxxxxxxxxx>
- Date: Thu, 19 Apr 2007 12:03:56 +0200
I am in a process of migrating from Fedora Core 1 to Debian etch.
We have few (winblows) boxes that are connected to the Internet via my
box. I just added to /etc/rc.local path to the following:
----------------------------------------------------------------------
# cat internetPoIP-u
#!/bin/bash
# echo " - Setting the default FORWARD policy to DROP"
/sbin/iptables -P FORWARD DROP
# echo " - Enabling SNAT (IPMASQ) functionality on ippp0"
/sbin/iptables -t nat -A POSTROUTING -o ippp0 -s 192.168.0.6/32 -j \
MASQUERADE
# echo " - Setting the FORWARD policy to 'DROP' all incoming-unrelated
traffic"
/sbin/iptables -A INPUT -i ippp0 -m state --state NEW,INVALID -j DROP
/sbin/iptables -A FORWARD -i ippp0 -m state --state NEW,INVALID -j DROP
echo 1 > /proc/sys/net/ipv4/ip_forward
----------------------------------------------------------------------
I tried this at Debian, and it will not work. If I just do:
# /sbin/iptables -t nat -A POSTROUTING -o ippp0 -s 192.168.0.6/32 -j \
MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward
than 192.168.0.6 can access Internet. I just copied the above script
from the Internet, I did not wrote it. Any ideas what has changed with
the iptables, so that this script is no longer usable?
--
___ ____
/__/ / \ ** Registrovani korisnik Linuksa #291606 **
/ / \/ /\ \ ** Registered Linux user #291606 **
/__/\____/--\__\ ** http://counter.li.org/ **
.
- Follow-Ups:
- Re: iptables problem
- From: Douglas Mayne
- Re: iptables problem
- Prev by Date: a big problem for me
- Next by Date: Problem with clock
- Previous by thread: a big problem for me
- Next by thread: Re: iptables problem
- Index(es):
Relevant Pages
|
