Mailinglist Archive: opensuse (2269 mails)

[datatwirl@xxxxxxx (mute)]

Hi,
I have this interesting problem with masq'ing...
I have two machines, one is a suse linux nat, the other one is a windows box,
with an intrnal ip address, and a dsl line, which goes into the linux machine.
So to masq on the linux box i do the following: 

dsl <-------> linux <------> win 
                        masq                box
firewall.rc
-----------------------
#MASQ
     /sbin/depmod -a
     /sbin/modprobe ip_masq_ftp
     /sbin/modprobe ip_masq_irc
     echo "1" > /proc/sys/net/ipv4/ip_forward
     echo "1" > /proc/sys/net/ipv4/ip_always_defrag
     echo "1" > /proc/sys/net/ipv4/ip_dynaddr
     /sbin/ipchains -M -S 7200 10 160
#     /sbin/ipchains -A input -j ACCEPT -i eth1 -s 0/0 67 -d 0/0 68 -p udp
     /sbin/ipchains-restore < /etc/ipchains.conf
#END MASQ

ipchains.conf
--------------------
[root@mordor muted]# ipchains -L
Chain input (policy ACCEPT):
target     prot opt     source                destination           ports
DENY       tcp  ------  anywhere             anywhere              any ->   6000
DENY       tcp  ------ !orthank.datatwirl.yi.org anywhere              any ->   netbios-ssn
DENY       tcp  ------ !orthank.datatwirl.yi.org anywhere              any ->   telnet
Chain forward (policy DENY):
target     prot opt     source                destination           ports
MASQ       all  ------  192.168.1.0/24       anywhere              n/a

but after the reboot, my masq completely broke. I still have the same ipchains
rules, but something is missing, and I am assuming it has to do with routing, 
unless im totally wrong. Heres my routing table

root@mordor muted]# route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
10.3.4.1        *               255.255.255.255 UH    0      0        0 ppp0
192.168.1.0     datatwirl.yi.or 255.255.255.0   UG    0      0        0 eth0
192.168.1.0     *               255.255.255.0   U     0      0        0 eth0
loopback        *               255.0.0.0       U     0      0        0 lo
default         10.3.4.1        0.0.0.0         UG    0      0        0 ppp0

as you can see, there is a route to localnet 192.168.1.0/24 through my eth0,
which is 192.168.1.1, and then i do masq with ipchains. Yet my windows box
would not see the outside world! (It is setup correctly). What am I doing wrong?

TIA,
max


-- 
To unsubscribe send e-mail to suse-linux-e-unsubscribe@xxxxxxxx
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx             
Also check the FAQ at http://www.suse.com/support/faq