On Saturday 27 September 2003 21:58, Adam Mercer wrote:
�(B> On Sat, Sep 27, 2003 at 07:28:23AM -0500, Mojo B. Nichols wrote:
�(B> > I'm not sure I know what your problem is, but this may help.
�(B> >
�(B> > # basic nat on extrenal device.
�(B> > iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
�(B>
�(B> I've already got this rule in my firewall
�(B>
�(B> > This should get your nating working. I highly recommend using LOG to
�(B> > determine and trouble shoot what is going on in your firewall. If you
�(B> > have a rule that you don't know what it is doing copy the rule and
�(B> > replace the -J ACCEPT (whatever) with -j LOG --prefix "TESTING RULE
�(B> > 3" in the first copy of the rule, or even comment out the old one
�(B> > until LOG is LOGING the rule you want.
�(B>
�(B> Logging info regarding the NAT line doesn't show anything in the system
�(B> logs?
�(B
�(BExcerpt from your script:
�(B
�(Bstart() {
�(B ebegin "Starting firewall"
�(B if [ -e "${FIREWALL}" ]; then
�(B restore
�(B else
�(B einfo "${FIREWALL} does not exists. Using default rules."
�(B rules
�(B fi
�(B eend $?
�(B}
�(B
�(BDoes ${FIREWALL} (/etc/firewall.rules) exist? If so then any changes you make
�(Bto rules() won't be used.
�(B
�(BJason
�(B
�(B--
�(B[EMAIL PROTECTED] mailing list
