At 01:42 PM 4/18/99 -0500, Fuzzy Fox wrote:
>
>John Simmons <[EMAIL PROTECTED]> wrote:
>>
>> ipchains -P forward DENY
>> ipchains -A forward -j MASQ -s 10.10.0.1/32 -d 0.0.0.0/0
>> ipchains -A forward -j MASQ -s 10.10.0.2/32 -d 0.0.0.0/0
>> ipchains -A forward -j MASQ -s 10.10.0.3/32 -d 0.0.0.0/0
>
>You could simplify this to one rule with a "-s 10.10.0.0/24", but that's
>not a problem.
Actually, I can't I have a machine I on the LAN that I don't want "handled"
by ipchains. :-)
>It really looks like you have done everything you need to do; you just
>need to enable IP forwarding:
>
> echo 1 > /proc/sys/net/ipv4/ip_forward
>
I had this line in there, but didn't have a space on either side of the ">"
character. When I added the spaces, it worked!
Next question... :-)
I use ipautofw for some of my settings - is there an ipchains equivalant
(the ipchains how-to kinda sucks for casual users)?
/*===================================================*/
There are three types of lies...
lies ("You'll never need more than 64K"),
damn lies ("Windows is more stable than Linux"), and
press releases ("It will be released as scheduled").
John Simmons (Redneck Techno-Biker)
http://www.members.home.net/jms1/index.html
John Simmons (Barbarian Diecast Collector)
http://www.members.home.net/jsimm/diecast_index.html
/*===================================================*/
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
