Mailinglist Archive: opensuse-security (421 mails)

[stephane parenton <sparenton@xxxxxxxxxxx>]

hi,

I have quite a stupid question.... i set a suse 7.0 box as a gateway between a token ring network and a born-and-growing ethernet network.... it's inside our lan and we're working with private adresses. One of the subnetwork is 192.168.0.x (the token
ring) and the ethernet subnetwork is 192.168.100.x... The gateway hosts 2 nics, one token ring and one ethernet. So far the gateway runs quit good, but not good enough because i have internet adresses that are visible from a box before my gateway, and not
after my gateway....

I used ipchains in order to say "everything that comes and goes can cross", but actually, it does not.... what have I missed ?

ip_forward is enabled
i added the token ring adress as gateway to the ethernet nic
and the ipchains is -A forward -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j MASQ

as it is inside our network, I don't want any filter to be active... i just want everything to pass through the gateway back and forth.

I certainly have missed something important but what ?...

TIA
Stephane