Thanks to all those who replied to my question. I tried all suggestions
but it still doesn't work! I'm completely stumped!!!
Again, my problem is IP masq works ONLY after I ping all the hosts on
my HOME LAN from firewall(gateway) system. I have to do the ping
everytime my gateway system is rebooted!! Looks like ping somehow wakes
up IP masq function.
Chris,
1. Yes I did make sure that I do:
echo "1" > /proc/sys/net/ipv4/ip_forward.
Although, I didn't have to do that because I had it set in
/etc/sysconfig/network file.
Moonshi,
2. I installed RedHat 6.0 from scratch to eliminate any kernel
incompatibility issues.
Adams,
3. I also used the following command with added "-d" option.
ipchains -A forward -s 192.168.1.0/24 -d 0.0.0.0/0 -j MASQ
Thanks in advance,
--Nehali
--- Nehali Neogi <[EMAIL PROTECTED]> wrote:
> Hi,
> I recently upgraded my kernel from 2.0.36 to 2.2.5
> and also moved from
> ipfwadm to ipchains. My firewall system has two
> interface one to my ISP
> (mediaone) and other to my home LAN (192.168.0)
>
> Here are my rules in the forward chain (added in
> rc.local):
> ipchains -P forward DENY
> ipchains -A forward -s 192.168.1.0/24 -j MASQ
>
> Also set FORWARD_IPV4= yes in
> /etc/sysconfig/network.
>
> My problem is every time my system reboots, I have
> to manually "ping"
> all the hosts on my LAN from the firewall machine.
> Only after I do
> that, IP masquerading works. Any ideas why?
>
> Thanks in advance,
> Nehali
>
> _____________________________________________________________
> Do You Yahoo!?
> Free instant messaging and more at
> http://messenger.yahoo.com
>
> -
> To unsubscribe from this list: send the line
> "unsubscribe linux-net" in
> the body of a message to [EMAIL PROTECTED]
>
_____________________________________________________________
Do You Yahoo!?
Free instant messaging and more at http://messenger.yahoo.com
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
