The ip_forward enables the forwarding in the kernel, you will still need to
run ipchains/i[fwadm to acutely setup the redirect between the IPs
This is what I use on my local network to route IP to the internet and
should work with the newer kernels. The older kernels use ipfwadm.
<---- clip from rc.local -------->
#Unlike my 2.0 setup, this is 100% proper and secure
/sbin/ipchains -F input
/sbin/ipchains -F output
/sbin/ipchains -F forward
/sbin/ipchains -P input ACCEPT
/sbin/ipchains -P output ACCEPT
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 10.0.0.0/8 -j MASQ
for i in /lib/modules/$(uname -r)/ipv4/*
do
/sbin/insmod $i
done
/usr/sbin/ipmasqadm mfw -F
# SMTP to brent
/sbin/ipchains -I input -p tcp -y -d 24.2.44.176/32 25 -m 1
/usr/sbin/ipmasqadm mfw -I -m 1 -r brent 25
<-------- End Clip -------->
The first parts sets up the basic rerouting
Thee last 4 lines is to redirect internet connections on the SMTP port to an
internal address.
This method uses masquerading and does not require routing table changes.
David Saunders
----- Original Message -----
From: Ivan <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, July 30, 1999 1:24 PM
Subject: Re: ip_forward
> You're right, redhat enabled it at boot time, but forwarding still don't
work
> between those two ports ..
>
> P.S. Sorry about my terrible english ..
>
> Ivan, 9A3WN
>
