Hello, I have a small cluster which I have been trying to configure so that all of the computers can reach the internet. The problem is that my gateway can reach the internet (through eth0), but the inside network can't. The inside network can ping eth0, but not the external gateway or beyond. My gateway uses static ip's and has an intel e100 (eth0, 128.165.46.73) and a built-in 3com 3c905 (eth1, 192.168.1.1). The gateway for eth0 is 128.165.46.241 and the dns servers are 128.165.4.4 and 11.88. My gateway is also acting as a dhcp server for the rest of the cluster, and I have set it up to give out addresses 192.168.1.2-20. I essentially copied the dhcpd.conf and iptables files from my redhat 8 box that works. I enabled ip forwarding. Here are the firewall configs I have tried: 1) iptables -A POSTROUTING -t nat -j MASQUERADE -o eth0 2) using susefirewall2 FW_DEV_EXT="eth0" FW_DEV_INT="eth1" FW_ROUTE="yes" FW_MASQUERADE="yes" FW_MASQ_NETS="192.168.1.0/24" FW_SERVICE_DHCPD="yes" 3) using a more elaborate iptables script -A INPUT -i lo -j ACCEPT -A INPUT -i eth1 -j ACCEPT -A INPUT -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p tcp -m tcp --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT -A OUTPUT -o lo -j ACCEPT -A OUTPUT -o eth1 -j ACCEPT -A OUTPUT -o eth0 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT -A POSTROUTING -o eth0 -j SNAT --to-source 128.165.46.145 Please let me know what I am doing wrong. Thanks, Benj Fitz PS Here is my dhcpd.conf file from rh8 ddns-update-style interim; shared-network lanl.gov { option time-offset -18000; subnet 192.168.1.0 netmask 255.255.255.0 { option routers 192.168.1.1; option subnet-mask 255.255.255.0; option domain-name-servers 128.165.4.4; option domain-name-servers 128.165.11.88; option domain-name "lanl.gov"; range 192.168.1.2 192.168.1.20; host ns { next-server benj11.lanl.gov; fixed-address 192.168.1.1; } } } __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com
participants (1)
-
Benj FitzPatrick