Re: [newbie] ip chains (newbie confusion)
On Tue, 16 May 2000, flupke wrote: > This seems weird... :-( > What does it say when you try "cat /proc/sys/net/ipv4/ip_forward"? > If that doesn't give any error, then you must be able to > "echo 1 >/proc/.../ip_forward" as root. > > If it does give an error, Check that the file exists (ls -l > /proc/sys/net/ipv4/ip_forward) and that the kernel has everything he > needs. Maybe you have to build a new kernel, but I doubt that this is the > case. There must be another problem. I don't know which one. :-( I think I already replied to this but from the HOWTO: #CRITICAL: Enable IP forwarding since it is disabled by default since # # Redhat Users: you may try changing the options in /etc/sysconfig/network from: # # FORWARD_IPV4=false # to # FORWARD_IPV4=true # echo "1" > /proc/sys/net/ipv4/ip_forward
Re: [newbie] ip chains (newbie confusion)
This seems weird... :-( What does it say when you try "cat /proc/sys/net/ipv4/ip_forward"? If that doesn't give any error, then you must be able to "echo 1 >/proc/.../ip_forward" as root. If it does give an error, Check that the file exists (ls -l /proc/sys/net/ipv4/ip_forward) and that the kernel has everything he needs. Maybe you have to build a new kernel, but I doubt that this is the case. There must be another problem. I don't know which one. :-( If the ip_forward file doesn't exist, build a new kernel (following what they say in the HOWTO). If it does exist, I'm out of ideas. Post your question on the expert list, or another mailing list about ipchains. HTH Flupke On Mon, 15 May 2000 [EMAIL PROTECTED] wrote: > I read the HOWTO some more and with your help modprobed the > nessesary modules and this is what happens afterwards. > > echo > /proc/sys/net/ipv4/ip_forward > echo > bash: /proc/sys/net/ipv4/ip_forward: Permission Denied > echo > whoami > echo > root > > any ideas > > > Mike > > > Here is the list : > > ip_masq_vdolive > > ip_masq_user > > ip_masq_raudio > > ip_masq_quake > > ip_masq_portfw > > ip_masq_mfw > > ip_masq_irc > > ip_masq_ftp > > ip_masq_cuseeme > > ip_masq_autofw > > > > HTH > > Flupke > > > > On Mon, 15 May 2000 [EMAIL PROTECTED] wrote: > > > > > Sorry trying to understand the HOWTO and it's not straight > > > forward. Which modules are suppose to be modprobed. It > > > lists several but all I want to do is share a internet > > > connection(for now:). > > > > > > > If you just want to share your connection, you just have to go through > > > > some easy steps : > > > > First modprobe the necessary modules. They are listed in the > > > > ipchains-HOWTO, and should already built with mandrake. The kernel should > > > > also already be properly configured. > > > > > > > > Then enable the forwarding : > > > > echo 1 >/proc/sys/net/ipv4/ip_forward. > > > > If that doesn't work, that means that I was wrong and that you have to > > > > make a new kernel. > > > > > > > > Then you tell the kernel to masq the packages that come from your intranet: > > > > ipchains -A forward -s a.b.c.d/e -d 0.0.0.0/0 -j MASQ > > > > where a.b.c.d is the address of your local network and e is the number of > > > > bit set to 1 in your netmasq (255.0.0.0 -> 8, 255.255.0.0 -> 16, > > > > 255.255.255.0 -> 24) > > > > Then you set the gateway of your router to be the one of your ISP > > > > For your intranet computers, the gateway is your router. > > > > > > > > That should do it. Of course, there are a lot of other possibilities with > > > > ipchains. Thats why you should read the ipchains-HOWTO step by step. > > > > > > > > Maybe I forgot some steps, but these are the main ones. > > > > If you have problems, tell exactly what is going wrong and post the output > > > > of the ipchains -L command. > > > > > > > > HTH > > > > Flupke > > > > > > > > On Thu, 11 May 2000 [EMAIL PROTECTED] wrote: > > > > > > > > > I have been setting up a samba server with adsl connected > > > > > to several win98 boxes. I was told that to share the dsl > > > > > connection all I had to do was set up IP chains. I then > > > > > downloaded the current ip chains howto and am now completely > > > > > lost. I read the first 4 chapters right up to where you set > > > > > up the win98 boxes. Do I have to recompile the Kernel (I > > > > > have never done this before); I am running mandrake 7.02. > > > > > I was assuming that the IP chains was already built in. Is > > > > > there a easy way to set it up. I don't mind recompiling but > > > > > could use any suggestions or help that anyone could put > > > > > forward. > > > > > > > > > > Thanx in advance > > > > > > > > > > Mike > > > > > > > > > > > > > > > > > > > > Get your own free email account from > > > > > http://www.popmail.com > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > Get your own free email account from > > > http://www.popmail.com > > > > > > > > > > > > > > > > > Get your own free email account from > http://www.popmail.com > >
Re: [newbie] ip chains (newbie confusion)
On Mon, 15 May 2000, [EMAIL PROTECTED] wrote: > I read the HOWTO some more and with your help modprobed the > nessesary modules and this is what happens afterwards. > > echo > /proc/sys/net/ipv4/ip_forward > echo > bash: /proc/sys/net/ipv4/ip_forward: Permission Denied > echo > whoami > echo > root In /etc/sysconfig/network do you have FORWARD_IPV4=yes (or 'true', apparently same thing)
Re: [newbie] ip chains (newbie confusion)
I read the HOWTO some more and with your help modprobed the nessesary modules and this is what happens afterwards. echo > /proc/sys/net/ipv4/ip_forward echo > bash: /proc/sys/net/ipv4/ip_forward: Permission Denied echo > whoami echo > root any ideas Mike > Here is the list : > ip_masq_vdolive > ip_masq_user > ip_masq_raudio > ip_masq_quake > ip_masq_portfw > ip_masq_mfw > ip_masq_irc > ip_masq_ftp > ip_masq_cuseeme > ip_masq_autofw > > HTH > Flupke > > On Mon, 15 May 2000 [EMAIL PROTECTED] wrote: > > > Sorry trying to understand the HOWTO and it's not straight > > forward. Which modules are suppose to be modprobed. It > > lists several but all I want to do is share a internet > > connection(for now:). > > > > > If you just want to share your connection, you just have to go through > > > some easy steps : > > > First modprobe the necessary modules. They are listed in the > > > ipchains-HOWTO, and should already built with mandrake. The kernel should > > > also already be properly configured. > > > > > > Then enable the forwarding : > > > echo 1 >/proc/sys/net/ipv4/ip_forward. > > > If that doesn't work, that means that I was wrong and that you have to > > > make a new kernel. > > > > > > Then you tell the kernel to masq the packages that come from your intranet: > > > ipchains -A forward -s a.b.c.d/e -d 0.0.0.0/0 -j MASQ > > > where a.b.c.d is the address of your local network and e is the number of > > > bit set to 1 in your netmasq (255.0.0.0 -> 8, 255.255.0.0 -> 16, > > > 255.255.255.0 -> 24) > > > Then you set the gateway of your router to be the one of your ISP > > > For your intranet computers, the gateway is your router. > > > > > > That should do it. Of course, there are a lot of other possibilities with > > > ipchains. Thats why you should read the ipchains-HOWTO step by step. > > > > > > Maybe I forgot some steps, but these are the main ones. > > > If you have problems, tell exactly what is going wrong and post the output > > > of the ipchains -L command. > > > > > > HTH > > > Flupke > > > > > > On Thu, 11 May 2000 [EMAIL PROTECTED] wrote: > > > > > > > I have been setting up a samba server with adsl connected > > > > to several win98 boxes. I was told that to share the dsl > > > > connection all I had to do was set up IP chains. I then > > > > downloaded the current ip chains howto and am now completely > > > > lost. I read the first 4 chapters right up to where you set > > > > up the win98 boxes. Do I have to recompile the Kernel (I > > > > have never done this before); I am running mandrake 7.02. > > > > I was assuming that the IP chains was already built in. Is > > > > there a easy way to set it up. I don't mind recompiling but > > > > could use any suggestions or help that anyone could put > > > > forward. > > > > > > > > Thanx in advance > > > > > > > > Mike > > > > > > > > > > > > > > > > Get your own free email account from > > > > http://www.popmail.com > > > > > > > > > > > > > > > > > > > > > > > > > > > Get your own free email account from > > http://www.popmail.com > > > > > > > Get your own free email account from http://www.popmail.com
Re: [newbie] ip chains (newbie confusion)
Here is the list : ip_masq_vdolive ip_masq_user ip_masq_raudio ip_masq_quake ip_masq_portfw ip_masq_mfw ip_masq_irc ip_masq_ftp ip_masq_cuseeme ip_masq_autofw HTH Flupke On Mon, 15 May 2000 [EMAIL PROTECTED] wrote: > Sorry trying to understand the HOWTO and it's not straight > forward. Which modules are suppose to be modprobed. It > lists several but all I want to do is share a internet > connection(for now:). > > > If you just want to share your connection, you just have to go through > > some easy steps : > > First modprobe the necessary modules. They are listed in the > > ipchains-HOWTO, and should already built with mandrake. The kernel should > > also already be properly configured. > > > > Then enable the forwarding : > > echo 1 >/proc/sys/net/ipv4/ip_forward. > > If that doesn't work, that means that I was wrong and that you have to > > make a new kernel. > > > > Then you tell the kernel to masq the packages that come from your intranet: > > ipchains -A forward -s a.b.c.d/e -d 0.0.0.0/0 -j MASQ > > where a.b.c.d is the address of your local network and e is the number of > > bit set to 1 in your netmasq (255.0.0.0 -> 8, 255.255.0.0 -> 16, > > 255.255.255.0 -> 24) > > Then you set the gateway of your router to be the one of your ISP > > For your intranet computers, the gateway is your router. > > > > That should do it. Of course, there are a lot of other possibilities with > > ipchains. Thats why you should read the ipchains-HOWTO step by step. > > > > Maybe I forgot some steps, but these are the main ones. > > If you have problems, tell exactly what is going wrong and post the output > > of the ipchains -L command. > > > > HTH > > Flupke > > > > On Thu, 11 May 2000 [EMAIL PROTECTED] wrote: > > > > > I have been setting up a samba server with adsl connected > > > to several win98 boxes. I was told that to share the dsl > > > connection all I had to do was set up IP chains. I then > > > downloaded the current ip chains howto and am now completely > > > lost. I read the first 4 chapters right up to where you set > > > up the win98 boxes. Do I have to recompile the Kernel (I > > > have never done this before); I am running mandrake 7.02. > > > I was assuming that the IP chains was already built in. Is > > > there a easy way to set it up. I don't mind recompiling but > > > could use any suggestions or help that anyone could put > > > forward. > > > > > > Thanx in advance > > > > > > Mike > > > > > > > > > > > > Get your own free email account from > > > http://www.popmail.com > > > > > > > > > > > > > > > > > Get your own free email account from > http://www.popmail.com > >
Re: [newbie] ip chains (newbie confusion)
Sorry trying to understand the HOWTO and it's not straight forward. Which modules are suppose to be modprobed. It lists several but all I want to do is share a internet connection(for now:). > If you just want to share your connection, you just have to go through > some easy steps : > First modprobe the necessary modules. They are listed in the > ipchains-HOWTO, and should already built with mandrake. The kernel should > also already be properly configured. > > Then enable the forwarding : > echo 1 >/proc/sys/net/ipv4/ip_forward. > If that doesn't work, that means that I was wrong and that you have to > make a new kernel. > > Then you tell the kernel to masq the packages that come from your intranet: > ipchains -A forward -s a.b.c.d/e -d 0.0.0.0/0 -j MASQ > where a.b.c.d is the address of your local network and e is the number of > bit set to 1 in your netmasq (255.0.0.0 -> 8, 255.255.0.0 -> 16, > 255.255.255.0 -> 24) > Then you set the gateway of your router to be the one of your ISP > For your intranet computers, the gateway is your router. > > That should do it. Of course, there are a lot of other possibilities with > ipchains. Thats why you should read the ipchains-HOWTO step by step. > > Maybe I forgot some steps, but these are the main ones. > If you have problems, tell exactly what is going wrong and post the output > of the ipchains -L command. > > HTH > Flupke > > On Thu, 11 May 2000 [EMAIL PROTECTED] wrote: > > > I have been setting up a samba server with adsl connected > > to several win98 boxes. I was told that to share the dsl > > connection all I had to do was set up IP chains. I then > > downloaded the current ip chains howto and am now completely > > lost. I read the first 4 chapters right up to where you set > > up the win98 boxes. Do I have to recompile the Kernel (I > > have never done this before); I am running mandrake 7.02. > > I was assuming that the IP chains was already built in. Is > > there a easy way to set it up. I don't mind recompiling but > > could use any suggestions or help that anyone could put > > forward. > > > > Thanx in advance > > > > Mike > > > > > > > > Get your own free email account from > > http://www.popmail.com > > > > > > > Get your own free email account from http://www.popmail.com
Re: [newbie] ip chains (newbie confusion)
I'm a confused newbie too when it comes to writing rules for IPCHAINS, I've had good luck with a program calle PMfirewall it's on www.pointman.org . It's a script for writing rules in IPCHAINS and all you need to do is answer the questions when you execute the script. It's not perfect for everyone but it will get you started, and you can edit rules as you like. I keep tabs on my firewall with kfirewall on KDE. Hope this helps. vern PS IPCHAINS is in Mdk 7.0 [EMAIL PROTECTED] wrote: > > I have been setting up a samba server with adsl connected > to several win98 boxes. I was told that to share the dsl > connection all I had to do was set up IP chains. I then > downloaded the current ip chains howto and am now completely > lost. I read the first 4 chapters right up to where you set > up the win98 boxes. Do I have to recompile the Kernel (I > have never done this before); I am running mandrake 7.02. > I was assuming that the IP chains was already built in. Is > there a easy way to set it up. I don't mind recompiling but > could use any suggestions or help that anyone could put > forward. > > Thanx in advance > > Mike > > > Get your own free email account from > http://www.popmail.com -- Vernon Stilwell [EMAIL PROTECTED] Hardinsburg, Kentucky[EMAIL PROTECTED] This email was created in a Micro$haft free environment! Silly hacker, root is for administrators!
[newbie] ip chains (newbie confusion)
I have been setting up a samba server with adsl connected to several win98 boxes. I was told that to share the dsl connection all I had to do was set up IP chains. I then downloaded the current ip chains howto and am now completely lost. I read the first 4 chapters right up to where you set up the win98 boxes. Do I have to recompile the Kernel (I have never done this before); I am running mandrake 7.02. I was assuming that the IP chains was already built in. Is there a easy way to set it up. I don't mind recompiling but could use any suggestions or help that anyone could put forward. Thanx in advance Mike Get your own free email account from http://www.popmail.com
[newbie] ip chains (newbie confusion)
I have been setting up a samba server with adsl connected to several win98 boxes. I was told that to share the dsl connection all I had to do was set up IP chains. I then downloaded the current ip chains howto and am now completely lost. I read the first 4 chapters right up to where you set up the win98 boxes. Do I have to recompile the Kernel (I have never done this before); I am running mandrake 7.02. I was assuming that the IP chains was already built in. Is there a easy way to set it up. I don't mind recompiling but could use any suggestions or help that anyone could put forward. Thanx in advance Mike Get your own free email account from http://www.popmail.com
[newbie] ip chains (newbie confusion)
I have been setting up a samba server with adsl connected to several win98 boxes. I was told that to share the dsl connection all I had to do was set up IP chains. I then downloaded the current ip chains howto and am now completely lost. I read the first 4 chapters right up to where you set up the win98 boxes. Do I have to recompile the Kernel (I have never done this before); I am running mandrake 7.02. I was assuming that the IP chains was already built in. Is there a easy way to set it up. I don't mind recompiling but could use any suggestions or help that anyone could put forward. Thanx in advance Mike Get your own free email account from http://www.popmail.com
