[newbie] IP-forwarding does not work
Hi all, I am facing my age=old problem again. I try to set up IP forwarding (frm w98 box through mdk10.0). Which logfiles should I check to see if there are problems? I downloaded a script from http://www.speakeasy.org/~curby/filelib/curbywall which states to work with mdk10. It loads. But that is all I see... Any pointers anyone? Thanks, Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
On Monday 24 January 2005 17:02, Paul wrote: Hi all, I am facing my age=old problem again. I try to set up IP forwarding (frm w98 box through mdk10.0). Which logfiles should I check to see if there are problems? I downloaded a script from http://www.speakeasy.org/~curby/filelib/curbywall which states to work with mdk10. It loads. But that is all I see... Any pointers anyone? Thanks, Paul Why do you need a script? What is wrong with simply going through the Internet sharing wizard in Mandrake Control Centre? The wizard will configure shorewall to perform Masquerading for you. If you also require specific ports to be forwarded to your Win98 machine it is simple enough to configure shorewall. derek -- www.jennings.homelinux.net http://twiki.mdklinuxfaq.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
Op Mon, 24 Jan 2005 17:18:01 + schreef Derek Jennings: I downloaded a script from http://www.speakeasy.org/~curby/filelib/curbywall which states to work with mdk10. It loads. But that is all I see... Why do you need a script? What is wrong with simply going through the Internet sharing wizard in Mandrake Control Centre? The wizard will configure shorewall to perform Masquerading for you. When I run this tool, all kinds of nasty things get on the screen, like that there are problems installing a DHCP-server: ...retrieving failed: wget failed: exited with 1 or signal 0 Installation failed, some files are missing: ftp://ftp.fh-wolfenbuettel.de/pub/os/linux/mandrakelinux/official/updates/10.0/RPMS/./dhcp-server-3.0-1.rc14.0.1.100mdk.i586.rpm You may want to update your urpmi database A lot has been said about urpmi already, these days, but still I dare ask: how do I update the urpmi database? Thanks, Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
On Monday 24 January 2005 18:33, Paul wrote: Op Mon, 24 Jan 2005 17:18:01 + schreef Derek Jennings: I downloaded a script from http://www.speakeasy.org/~curby/filelib/curbywall which states to work with mdk10. It loads. But that is all I see... Why do you need a script? What is wrong with simply going through the Internet sharing wizard in Mandrake Control Centre? The wizard will configure shorewall to perform Masquerading for you. When I run this tool, all kinds of nasty things get on the screen, like that there are problems installing a DHCP-server: ...retrieving failed: wget failed: exited with 1 or signal 0 Installation failed, some files are missing: ftp://ftp.fh-wolfenbuettel.de/pub/os/linux/mandrakelinux/official/updates/1 0.0/RPMS/./dhcp-server-3.0-1.rc14.0.1.100mdk.i586.rpm You may want to update your urpmi database A lot has been said about urpmi already, these days, but still I dare ask: how do I update the urpmi database? Thanks, Paul Hi, su urpmi.update -a -- Pablo Ortúzar Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
On Monday 24 January 2005 12:33 pm, Paul wrote: A lot has been said about urpmi already, these days, but still I dare ask: how do I update the urpmi database? Thanks, Paul If you have good reliable sources Paul, then usually: (as root) urpmi.update -a works fine here. HTHs. -- /\ DarkLord \/ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
If you have good reliable sources Paul, then usually: (as root) urpmi.update -a Thank you and Pablo. Apparently some of my sources are not so reliable anymore: retrieving source hdlist (or synthesis) of main... ftp://ftp.nluug.nl/pub/os/Linux/distr/Mandrakelinux/official/10.0/i586/Mandrake/base/hdlist.cz computing md5sum of retrieved source hdlist (or synthesis) ...retrieving failed: md5sum mismatch retrieval of source hdlist (or synthesis) failed retrieving source hdlist (or synthesis) of updates... ftp://ftp.fh-wolfenbuettel.de/pub/os/linux/mandrakelinux/official/updates/10.0/base/hdlist.cz ...retrieving failed: wget failed: exited with 1 or signal 0 retrieval of source hdlist (or synthesis) failed no hdlist file found for medium updates I tried, despite that, to urpmi shorewall, but that gave me: [EMAIL PROTECTED] quicktables-2.0]# urpmi shorewall unable to take medium International CD (x86) (cdrom3) into account as no list file [/var/lib/urpmi/list.International CD (x86) (cdrom3)] exists unable to take medium update_source into account as no list file [/var/lib/urpmi/list.update_source] exists ftp://ftp.fh-wolfenbuettel.de/pub/os/linux/mandrakelinux/official/updates/10.0/RPMS/shorewall-2.0.1-3.2.100mdk.noarch.rpm ...retrieving failed: wget failed: exited with 1 or signal 0 Installation failed, some files are missing: ftp://ftp.fh-wolfenbuettel.de/pub/os/linux/mandrakelinux/official/updates/10.0/RPMS/./shorewall-2.0.1-3.2.100mdk.noarch.rpm You may want to update your urpmi database IP-forwarding the hard way, I guess ;-) Thanks for the help! Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
Hmmm... the problem is not the firewall, nor the firewall, I find out now. I can ping locations on the internet through IP-address from the w98 box. So I have to figure out what to do with DNS on that thing... The plot thins! Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
On Monday 24 January 2005 12:55 pm, Paul wrote: IP-forwarding the hard way, I guess ;-) Thanks for the help! Paul I like your indomnitable spirit though! :-) Seriously, find better mirrors, then try it again. Patience may be required. I've had this same problem, then a day later, the site would be back up and all would be fine. PS Did you go to plf and set your sources there? Those are usually good ones, and offer alternatives. -- /\ DarkLord \/ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
Op Mon, 24 Jan 2005 13:22:05 -0500 schreef Ronald J. Hall: I like your indomnitable spirit though! :-) :-) Aries at the keyboard *grin* Seriously, find better mirrors, then try it again. Patience may be required. I've had this same problem, then a day later, the site would be back up and all would be fine. PS Did you go to plf and set your sources there? Those are usually good ones, and offer alternatives. plf, thac and the resource Charles has are all set up but they don't help me further... (They do respond and update nicely.) Still hacking away at the w98 thing. Still pinging IP-addresses... Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] IP-forwarding does not work
So I have to figure out what to do with DNS on that thing... Got the bloody thing tackled. Point gateway to linux ip address, use nameservers from resolv.conf. URGH, I remember now why I hate MS-windows so much. I have not rebooted my Linux box that often in a year!! You moved the mouse. Do you want to reboot your system now? Blagh... Paul -- Never let your sense of morals get in the way of doing what's right. - Isaac Asimov http://www.nlpagan.net/linux.php Have you visited http://twiki.mdklinuxfaq.org yet? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] ip forwarding(?) with iptables......
There are some things on the market to help with IPTables: Mason: http://dhp.com/~whisper/mason/ or Fbuilder Plus http://www.icewalkers.com/softlib/app/app_01535.html Anybody ever used these and know if they are any good? J On Friday 26 Jul 2002 10:11 pm, you wrote: Hello all, I currently have Mandrake 8.2 installed and configured to act as a masquerade gateway and firewall for a small network at our office. All the PCs on the ethernet are running windoz 98. I need to set up some type of port forwarding so that a connection can be made from the internet to the Mandrake firewall and then is redirected to one of the windoze machines. The specific machine has an ip addy of 192.168.0.101 and the mandrake machine is at 192.168.0.1. The Internet address is assigned dynamically on interface ppp0. The specific program that i need access to on the windows machine is the VNC server which i think listens on port 5500. What rules do i need to add to the firewall to do this? The current firewall was set up and configured with Interactive Bastille with the only ports being open to the internet interface being 80 for apache and ssh. My thoughts were that the easy way would be to have the mandrake firewall listen for connection attempts on the same port that VNC runs on and then have the firewall forward the connection attempt to the VNC server running on the windoze machine to handle authentication. Is this possible and what rule do i need to add to where (rc.firewall?) to accomplish this? Thanks much, Ian K. Harrell [EMAIL PROTECTED] -- Sent using Kmail. Virus free because its nothing to do with Microsoft Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] ip forwarding(?) with iptables......
try gShield (look it up in google..) It does port forwarding from scratch, and the save site has a perl script that generates IPTABLES rules for you.. you just run the script passed with the ingoing IP and port, and the outgoing IP and port, and it will give you a rule for it.. very handy.. rgds Franki -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of William H Gates Sent: Sunday, July 28, 2002 6:20 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] ip forwarding(?) with iptables.. There are some things on the market to help with IPTables: Mason: http://dhp.com/~whisper/mason/ or Fbuilder Plus http://www.icewalkers.com/softlib/app/app_01535.html Anybody ever used these and know if they are any good? J On Friday 26 Jul 2002 10:11 pm, you wrote: Hello all, I currently have Mandrake 8.2 installed and configured to act as a masquerade gateway and firewall for a small network at our office. All the PCs on the ethernet are running windoz 98. I need to set up some type of port forwarding so that a connection can be made from the internet to the Mandrake firewall and then is redirected to one of the windoze machines. The specific machine has an ip addy of 192.168.0.101 and the mandrake machine is at 192.168.0.1. The Internet address is assigned dynamically on interface ppp0. The specific program that i need access to on the windows machine is the VNC server which i think listens on port 5500. What rules do i need to add to the firewall to do this? The current firewall was set up and configured with Interactive Bastille with the only ports being open to the internet interface being 80 for apache and ssh. My thoughts were that the easy way would be to have the mandrake firewall listen for connection attempts on the same port that VNC runs on and then have the firewall forward the connection attempt to the VNC server running on the windoze machine to handle authentication. Is this possible and what rule do i need to add to where (rc.firewall?) to accomplish this? Thanks much, Ian K. Harrell [EMAIL PROTECTED] -- Sent using Kmail. Virus free because its nothing to do with Microsoft Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] ip forwarding(?) with iptables......
On Sun, 28 Jul 2002, frankie wrote: I've haven't tried gShield but I'm pretty happy (and safe!) with pcx_firewall, which comes from gShield! Taking both for analysis I still think that pcx_firewall is much easier to setup up. Haven't seen the latest gShield though! Ricardo try gShield (look it up in google..) It does port forwarding from scratch, and the save site has a perl script that generates IPTABLES rules for you.. you just run the script passed with the ingoing IP and port, and the outgoing IP and port, and it will give you a rule for it.. very handy.. rgds Franki -- == Linux user # 102240 = Machine # 96125 = Seti@home user == Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] ip forwarding(?) with iptables......
Ian, If you don't mind using a different firewall, you could use firestarter which, in addition to masquerading, etc. also handles port forwarding. I implemented this myself not last night. Very nice, and it's included on the Download Edition CDs. I'm not sure how to accomplish this with Bastille. From the commandline, though, I understand it's not too difficult. You use the DNAT abilities of iptables. Something like this: iptables -t nat -A PREROUTING -i ppp0 -p tcp -dport 5900 -j DNAT -to 192.168.0.101:5900 VNC listens on 59xx where xx is the screen, so you should probably do it for 5900 and 5901 both. By the way, port 80 is only for HTTP. SSH uses 21 or 22 (can't remember, exactly). Miark Ian K.Harrell [EMAIL PROTECTED] saith: snip I need to set up some type of port forwarding so that a connection can be made from the internet to the Mandrake firewall and then is redirected to one of the windoze machines. The specific machine has an ip addy of 192.168.0.101 and the mandrake machine is at 192.168.0.1. The Internet address is assigned dynamically on interface ppp0. The specific program that i need access to on the windows machine is the VNC server which i think listens on port 5500. What rules do i need to add to the firewall to do this? The current firewall was set up and configured with Interactive Bastille with the only ports being open to the internet interface being 80 for apache and ssh. snip Thanks much, Ian K. Harrell [EMAIL PROTECTED] Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] ip forwarding(?) with iptables......
do a search for a product called gShield... its a firewall that does it, but thats not why you should go there... they have a perl script there that generates port forward IPTABLES rules very handy,, the name of the people that host the tools is godot, google is your friend. you just dump it somewhere on your system, make it executable, and pass it the details, and it outputs the forward rule for you. its called: gforward.pl have fun.. rgds franki -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ian K.Harrell Sent: Friday, July 26, 2002 5:24 AM To: [EMAIL PROTECTED] Subject: [newbie] ip forwarding(?) with iptables.. Hello all, I currently have Mandrake 8.2 installed and configured to act as a masquerade gateway and firewall for a small network at our office. All the PCs on the ethernet are running windoz 98. I need to set up some type of port forwarding so that a connection can be made from the internet to the Mandrake firewall and then is redirected to one of the windoze machines. The specific machine has an ip addy of 192.168.0.101 and the mandrake machine is at 192.168.0.1. The Internet address is assigned dynamically on interface ppp0. The specific program that i need access to on the windows machine is the VNC server which i think listens on port 5500. What rules do i need to add to the firewall to do this? The current firewall was set up and configured with Interactive Bastille with the only ports being open to the internet interface being 80 for apache and ssh. My thoughts were that the easy way would be to have the mandrake firewall listen for connection attempts on the same port that VNC runs on and then have the firewall forward the connection attempt to the VNC server running on the windoze machine to handle authentication. Is this possible and what rule do i need to add to where (rc.firewall?) to accomplish this? Thanks much, Ian K. Harrell [EMAIL PROTECTED] Ian K. Harrell EMail: [EMAIL PROTECTED] Work: (336)789-9051 Home: (336)719-2972 Pager: (336)786-0395 Fax: (336)786-4853 Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] Ip - forwarding
How do you know it is compiled in your kernel?
[newbie] IP Forwarding
I think I may have IP forwarding turned on. But I'm not sure. Whats the best way to find out/disable it? Thanks, Jason
