All right. Now, let's do some logging to figure where the problem
actually is. (As I am fresh out of ideas)
Back track a bit and start here:
On Thu, Apr 21, 2005 at 10:38:25PM +0600, askar ... wrote:
> 11) # iptables -F
> # iptables -t nat -F
> # iptables -I INPUT 1 -i eth0 -j ACCEPT
> # iptables -I INPUT 1 -i lo -j ACCEPT
> # iptables -A INPUT -p UDP --dport bootps -i ! eth0 -j REJECT
> # iptables -A INPUT -p UDP --dport domain -i ! eth0 -j REJECT
> # iptables -A INPUT -p TCP --dport ssh -i eth1 -j ACCEPT
> # iptables -A INPUT -p TCP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP
> # iptables -A INPUT -p UDP -i ! eth0 -d 0/0 --dport 0:1023 -j DROP
Here, put
# iptables -I FORWARD -i eth0 -d 192.168.0.0/255.255.0.0 -j LOG
and continue
> # iptables -I FORWARD -i eth0 -d 192.168.0.0/255.255.0.0 -j DROP
> # iptables -A FORWARD -i eth0 -s 192.168.0.0/255.255.0.0 -j ACCEPT
> # iptables -A FORWARD -i eth1 -d 192.168.0.0/255.255.0.0 -j ACCEPT
> # iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
> # echo 1 > /proc/sys/net/ipv4/ip_forward
> # for f in /proc/sys/net/ipv4/conf/*/rp_filter ; do echo 1 > $f ; done
>
> 12) # /etc/init.d/iptables save
> # rc-update add iptables default
>
After that, try connectin to the internet with the Windows box again.
After it failed, either
# dmesg
or
# tail -n 60 /var/log/kernel/current
And show us the output.
W
--
----------------------------------------------------------------
* Address: 45 Spelman Hall, Princeton University 08544 *
* Phone: x68958 AIM: AngularJerk *
* E-mail: [EMAIL PROTECTED] From: sep.dynalias.net *
----------------------------------------------------------------
A pessimist's blood type is always B-negative.
(hum, W has B-negative blood. Is that why he is pessimistic?)
Sortir en Pantoufles: up 14 days, 2:29
--
gentoo-user@gentoo.org mailing list
