S. K. Goel wrote: > > You add following commands in /etc/rc.d/rc.local > echo "1" > /proc/sys/net/ipv4/ip_forward > /sbin/iptables -F FORWARD > /sbin/iptables -F INPUT > /sbin/iptables -F OUTPUT > /sbin/iptables -P INPUT ACCEPT > /sbin/iptables -P OUTPUT ACCEPT > /sbin/iptables -P FORWARD ACCEPT > /sbin/iptables -t nat -A POSTROUTING -s Local-IP -j SNAT --to Public-IP > > I am using linux as a router in more than 250 locations. >
errr.. dont you think you're being a bit generous with those settings ? are you really really sure you dont want any policy whatsoever for any chain's - KB -- Karanbir Singh : http://www.karan.org/ : [EMAIL PROTECTED] _______________________________________________ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/