On Thursday 07 June 2001 18:31, stephane parenton wrote:
So far the gateway runs quit good, but not good enough because i have internet adresses that are visible from a box before my gateway, and not after my gateway....
I used ipchains in order to say "everything that comes and goes can cross", but actually, it does not.... what have I missed ?
ip_forward is enabled i added the token ring adress as gateway to the ethernet nic and the ipchains is -A forward -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j MASQ If you don't want masquerading, you probably should do: "ipchains is -A forward -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j ACCEPT" or just "ipchains -P forward ACCEPT" without any further rules
as it is inside our network, I don't want any filter to be active... i just want everything to pass through the gateway back and forth. If you don't want any filter, you could also do
echo 1 > /proc/sys/net/ipv4/ip_forward 2> /dev/null ipchains -P input ACCEPT ipchains -P output ACCEPT ipchains -P forward ACCEPT or completely go without any ipchains rules (forwarding needs to be turned on, though) Also you could check if the routing from and to your ethernet is known by all other routers in your net. (especially, in your case, your router to the internet) Andreas Baetz ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been scanned for the presence of computer viruses. **********************************************************************