"Thomas Angst" wrote:
> 1.-
> ip valid ====>linux firewall ---------> web linux, ip private
> ip valid 2 is pointer at web linux....
See another message I'm about to post into this list for how to do
what you want with ipchains.
> 2.-
> command : ip route add nat 207.79.138.164 via 192.168.1.2
> what is errors in iproute2 ...RTNETLINK answers: Invalid Arguments
The kernel you are using is not compiled to do it like this. You
need to compile a kernel with all the advanced routing options
enabled.
> (kernel 2.2.x in linux Red Hat 6.1)
Nope, no can do it, no way. None of the advanced routing stuff is
in that kernel, like the routing policy stuff and ability to create
and use multiple routing tables. But it will do simple IP
masquerading out of the box.
I was under the impression that:
- the 2.2.x kernels must use /sbin/ipchains to set up masquerading, and
- for the 2.3.x and 2.4.x kernels, /sbin/ip is the new tool to use.
I don't know if doing NAT with /sbin/ip works with 2.2.x, I've never
tried it.
> the compiling kernel is errors: kernel is too big errors 2...used bzimage,
> not zlilo loaded...
> is my first compilation in linux.....
You don't need to do this just to get IP masquerading working.
But if you must, try compiling most drivers as loadable modules as
much as possible. Don't forget to do "make modules_install" after
you have put the new kernel into place, added a new entry for it to
/etc/lilo.conf, and re-run lilo.
Cheers
Tony
-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-
Tony Nugent <[EMAIL PROTECTED]> Systems Administrator, RHCE
GrowZone OnLine (a project of) GrowZone Development Network
POBox 475 Toowoomba Oueensland Australia 4350 Ph: 07 4637 8322
-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-=*#*=-
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
