Ben Ocean <[EMAIL PROTECTED]> writes: > Harry Putnam writes, in essence: > > > Let's see your netstat -nr: > > Destination Gateway Genmask Flags MSS Window irtt Iface > 192.168.1.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0 > 216.9.0.0 0.0.0.0 255.255.255.0 U 40 0 0 eth1 > 127.0.0.0 0.0.0.0 255.0.0.0 U 40 0 0 lo > 0.0.0.0 206.9.0.1 0.0.0.0 UG 40 0 0 eth1 >
Ben, I made an attempt above to reformat your netstat -nr output so that it stays unwrapped and readable, not sure it it will work but maybe. I'm getting very confused here. It's not that easy to unravel this thread and determine what is really set and what is not. Especially since I'm not a network maven. What follows is a long winded account of what should happen and how to make it happen. It requests that you start from scratch. After the verbose discussion is brief summary outline of what needs to be done. Maybe a rehash but in simplified format this is what needs to happen: First ... for the moment diregard MASQ forwarding and pretend it isn't a factor. Then shut everything down that involves networking. Flush any stray ipchains rules These commands should clear the deck: ifconfig eth0 down ifcongig eth1 down ipchains -F ipchains -X Make sure with: ifconfig <no flags> You should only see output for `lo' (loop back) Now lets discuss eth0 for a moment. On the linux box, on eth0, you should have the gateway your DSL provider gives you set as gateway .. if that is 206.9.0.1 like above then that is fine. You mentioned that you get a dynamic IP so I guess it is negotiated with dhcpd or similar. I think you showed that somewhere in the thread. Your IP has given you nameservers so those should appear in resolv.conf of the linux box. You say you can surf the net from that box so that is apparently set up OK. In brief: If you restart eth0, with: ifconfig eth0 up You see normal connectivity to internet from the linux box. You can ping your DSL provided gateway (206.9.0.1) nearly instantaneously and see very short time frames. Something on this order: time=29.730 msec With out rechecking the thread I'll guess your internet connection is on eth0 as shown in the netstat -nr output. Leaving eth0 now, its working, and setting up eth1 (your connection to the windows box from the linux box): Netstat -nr ouput shows 216.9.0.0 as eth1 IP address. Maybe a typo and is really 209.9.0.1 but either way that is wrong. Eth1 IP should be set to an address you've choosen for your internal network. Something in the 192 range like 192.168.0.1. If I remember correctly, there will be no gateway for eth1. Test it with: ifconfig eth1 up ping 192.168.0.1 (or what ever number you've chosen) if that works, shut it back down ifconfig eth1 down With eth1 setup on linux box... Now proceeding to windows box: Set the ip to another number in the range 192, like 192.168.0.2 Set the gateway to 192.168.0.1 (The IP address of eth1 on linux box) Set dns servers to those provided by DSL server. Return to the linux box and put a few things in /etc/hosts After first copying your original to a backup cp -a /etc/hosts /etc/hosts_orig Comment out anything in /etc/hosts and put stuff in this format Putting your numbers/names in place 127.0.0.1 localhost 192.168.0.1 MY_linux.host.name MY_linux 192.168.0.2 MY_windows.host.name MY_windows run these commands: ifconfig eth1 down ifconfig eth1 up Check with `ifconfig <no flags>' that it is up If this turns into a mess run: ps waux|grep eth1 (or maybe ifcfg) and kill -9 everthing that shows up, then start over with: ifconfig eth1 down ifconfig eth1 up (Still no forwarding involved yet) Now you should be able to ping the windows box from linux and the linux box from windows. > From linux you should be able to use alphabetic names to ping on If you cannot, then report here your errors. If that much works. Then try to set up basic minimal IP Masquerade (still not internet connected on DSL) Run these commands on the linux box: (Make sure ipchains is flushed as above) /bin/echo "1" > /proc/sys/net/ipv4/ip_forward /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -s 192.168.1.0/24 -j MASQ NOTE: Not sure these are still the same since 6.2 days but if not maybe someone will correct me Now reconnect to the internet at DSL connection (eth0) and try surfing from your windows box. Let us know how it goes. Summary: Begin by shutting down all connections and flushing ipchains Setup eth0 or check to make sure it agrees with above discussion Setup eth1 in accordance with outline discussed REstart eth1 Test that pinging works to/from either box to the other. Run minimal masquerade commands shown restart eth0 Test connectivity from windows box to internet Only now start to worry about a better ipchains setup. _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list