I'm having a problem with IP Masq on a multihomed RedHat 7.0 box, running kernels 2.4.22 or 2.2.19. I've searched Google high and low to no avail. The box is connected to an Ethernet LAN and an Ethernet-connected cable modem, and performs IP Masq for the LAN.
Logged onto console, with an empty ipchains or iptables rule set, pinging yahoo.com shows 70ms of latency. However, if I add an IP Masq rule, then ping yahoo.com from the Linux box itself, I show latency of 0.5 to 1.4 *seconds*. Deleting the rule returns latency to 70ms. I replaced my kernel with 2.4.22, to no avail. Here are the specific commands I'm using, starting with an empty iptables rule set: # ping yahoo.com PING yahoo.com (66.218.71.198) from [my public ip] : 56(84) bytes of data. 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=0 ttl=242 time=75.572 msec 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=1 ttl=242 time=78.951 msec # iptables -A POSTROUTING -t nat -s 10.10.0.0/16 -d ! 10.10.0.0/16 -j MASQUERADE # ping yahoo.com PING yahoo.com (66.218.71.198) from [my public ip] : 56(84) bytes of data. 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=0 ttl=242 time=548.003 msec 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=1 ttl=242 time=519.641 msec # iptables -F -t nat # ping yahoo.com PING yahoo.com (66.218.71.198) from [my public ip] : 56(84) bytes of data. 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=0 ttl=242 time=77.916 msec 64 bytes from w1.rc.vip.scd.yahoo.com (66.218.71.198): icmp_seq=1 ttl=242 time=76.283 msec Many thanks to anyone who can tell me why I'm having this problem and how to fix it. Ted Behling, Computer Consultant, Web Developer [EMAIL PROTECTED] -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
