Thank you for your advice - but the system still doesn't work. All I get is when I ping the end of the chain from machine 192.168.42.42 is Destination host Unreachable On Monday 02 Jun 2003 12:01, Anders Johansson wrote:
On Monday 02 June 2003 13.51, Basil Fowler wrote:
I have chain of three machines. 192.168.42.2 is connected by an ethernet link to the middle machine 10.0.0.1 which is connected in turn to a dialup internet connection through ppp0.
From machine 10.0.0.1 I can ping machine 192.168.42.2 and the IP server 195.92.65.96.
From machine 192.168.42.2 I can ping machine 1.0.0.1, but not the server 195.92.65.96.
since 192.168.x.x are private IP addresses, I assume the server doesn't know how to answer. You probably need to set up masquerading. Either with a command like
iptables -t nat -I POSTROUTING -s 192.168.42.2 -j MASQUERADE
This I have done on machine 10.0.0.1. The command iptables -t nat -L gives the following: Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- 192.168.42.2 anywhere
or, perhaps preferable, by configuring SuSEfirewall2 for routing and masquerading, check Togan's unofficial FAQ for the details on that
I have read the FAQ, the instructions on SuSEfirewall2 and tried that, but no luck. That is why I have reduced everything to the simplest possible. Unless I can get a basic setup to work, what chance have in a more complex situation