IP tables support (required for filtering/masq/NAT)
Packet filtering
Full NAT
MASQUERADE target support
Packet mangling
ipchains (2.2-style) support
ipfwadm (2.0-style) support
(certainly i don' t use the last two).
All other modules can be loaded
hey thankx fo all the replies,
i tried the following in order
echo "1" > /proc/sys/net/ipv4/ip_forward
/sbin/ipfwadm -F -p deny
i get the following error:
ipfwadm: setsockopt failed: Protocol not available.
just so you have some background, i am running debian 2.1 w/ 2.0.38
available on line at
http://www2.linuxjournal.com
go to the frame on the left
click magazine
...
Also take look through the debian mailing list archives.
There seems to be lots on ip masquerading there.
At 18:34 24.5.2000 -0700, you wrote:
> i am doing the following: /sbin/ipfw
i am doing the following:
/sbin/ipfwadm -F -p deny/sbin/ipfwadm -F -a m
-S 192.168.1.0/24 -D 0.0.0.0/0
and get the following error:
ipfwadm: setsockopt failed: protocol not
available
do i need to compile my kernel?
thankx
Can anyone revert this from ipchains to ipfwadm ? :
ipmasqadm autofw -A -u -r udp 51200 51201 -c 7175
ipmasqadm autofw -A -u -r tcp 51210 51210 -c 7175
Thanks
Hi
i am trying to open up the firewall to allow ftp for a particular server...
if not all servers/pc's.
currently i am typing in the ipfwadm commands on the command line but i am
unsure whether it becomes active straight away... should i put the test
rules in the ipfw file that is loade
PROTECTED]>
> To: debian-user@lists.debian.org
> Subject: IPFWADM Problems
>
> Hello all,
>
> I have a Debian system running kernel 2.0.38 that is supposed to be
> acting as a router between two networks. For the past many months,
> we've had our nameserver
Hello all,
I have a Debian system running kernel 2.0.38 that is supposed to be
acting as a router between two networks. For the past many months,
we've had our nameserver doing the routing because it was far less
flaky. We've fixed the problems in the hardware, finally, and would
like to go
TX packets:1203 errors:0 dropped:0 overruns:0
> : Interrupt:11 Base address:0xfcc0
I assumed from the following that the masquerading rule needs to be applied
to eth0. But i was wrong, it needed to be
applied to eth1.
ie.
ipfwadm -F -a masquerade -W eth0 -S 192.168.20.0/24 -D 0.0.0.0/0
needed t
Just a thought. Do you other machines have 192.168.20.254
shown as your gateway?
Marc-Adrian Napoli <[EMAIL PROTECTED]> wrote:
: hi all,
: quick ipfwadm question.
: ethernet cards are as so:
: eth0 Link encap:Ethernet HWaddr 00:00:E8:74:32:FD
: inet addr:192.168.20.254
hi all,
quick ipfwadm question.
ethernet cards are as so:
eth0 Link encap:Ethernet HWaddr 00:00:E8:74:32:FD
inet addr:192.168.20.254 Bcast:192.168.20.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:3042 errors:0 dropped
onfig .. with ipfwadm setup .. simple enough setup,
linux box in 10.1.1.1 with win box on 10.1.1.2 .. linux acting
as gateway with static IP, and masq'ing for the win box.
[EMAIL PROTECTED]:/local/etc/init.d# cat network
#! /bin/sh
ifconfig lo 127.0.0.1
route add -net 127.0.0.0
IPADDR=10.1.1
non
- Original Message -
From: George Bonser <[EMAIL PROTECTED]>
To: didier ayllon <[EMAIL PROTECTED]>
Cc: Debian-User
Sent: Sunday, January 16, 2000 10:31 PM
Subject: Re: ipfwadm
> On Sun, 16 Jan 2000, didier ayllon wrote:
>
> > when i try to do
when i try to do :
ipfwadm -A -f
The answer is :
ipfwadm : setsockopt failed:
Protocol not available
Does anyone can help me ?
Thank didier
r List
Sent: Thursday, November 25, 1999 8:02 PM
Subject: ipfwadm
> Hi. I have a linux box connected to internet thru ethernet..and my winbox
> connected thru that to internet using ipmasq. Now ive been trying to run a
> quake2 server..or any games server for that matter, not the point,
on
internal eth card, and winbox has 10.1.1.2.
I set up ipfwadm -F with these options.. hopefully to forward connection to
port 27910 to my winbox.
ipfwadm -F -a accept -b -P tcp -S 0/0 1024:65535 -D 10.1.1.2/32 27910
ipfwadm -F -a accept -b -P udp -S 0/0 1024:65535 -D 10.1.1.2/32 27910
So q2,uses
Hi,
There is a modular firewall shell-script called gmmf that should do what
you are after. It's pretty simple to set up, and denies all ports by
default, and requires you to open any specific ports you want to use.
Have a search on http://freshmeat.net for gmmf to find it.
Cheers,
damon
On F
Hi!
Finally I got the question from my previous message working. I
had to deny only the packets with the SYN set.
-- p.
Hi!
> set your default policies to DENY (instead of ACCEPT) and try again
> ..everything will be blocked except what you specifically state should be
> allowed in (dont try this from remote! you may lose access to the machine)
I've already tried that way, but it doesn't work out the way I
set your default policies to DENY (instead of ACCEPT) and try again
..everything will be blocked except what you specifically state should be
allowed in (dont try this from remote! you may lose access to the machine)
(use ipfwadm -p DENY)
nate
[mailto
or b).
Does anybody know the right ipfwadm rule for what I want and even
if this setup is possible?
TIA!
-- p.
Be aware all ppl on this list, One of the emails
from Robert Boyd in the emails from the last 24 hrs, contained the Happy99
virus.
And with regards to Ipfwadm and dcc send on the
slave machine, I find it works perfectly now if i connect to port 6667 of the
irc server, and no other.
I
Be aware all ppl on this list, One of the emails
from Robert Boyd in the emails from the last 24 hrs, contained the Happy99
virus.
And with regards to Ipfwadm and dcc send on the
slave machine, I find it works perfectly now if i connect to port 6667 of the
irc server, and no other.
I
Hi, I have a 2 computer setup, runnin Debian
2.0.36 as the server,
I am having a problem with dcc send on the
windows computer, receive works fine.
I feel it must be in the ipfwadm somewhere but i
can't find where.
I have the ip_masq_irc module loaded
btw,
Thanks in advance.
alled, and probably will not install it,
lack of room. I was wondering if anyone out there has seen and/or developed
either a shell or java driven script that will allow a normal user to
easily add or remove IPFWADM rules via a web interface.
Thank you for your time,
Anthony
Anthony Land
On Wed, Mar 17, 1999 at 11:50:06AM -0500, Wayne Cuddy wrote:
> Does SLink use ipfwadm or ipchains for firewalling and NAT?
It's enabled for both. If you run a 2.0.x kernel (the default on slink)
then you will need to use ipfwadm. If you upgrade to a 2.2.x kernel, then
you will nee
Does SLink use ipfwadm or ipchains for firewalling and NAT?
Thanks,
Wayne
Subject: Re: where is the ipfwadm stuff by default?
Date: Sat, Feb 20, 1999 at 05:44:56PM -
In reply to:Pollywog
Quoting Pollywog([EMAIL PROTECTED]):
>
>
> On 20-Feb-99 [EMAIL PROTECTED] wrote:
> >
> > Subject: where is the ipfwadm stuff by de
On 20-Feb-99 [EMAIL PROTECTED] wrote:
>
> Subject: where is the ipfwadm stuff by default?
> Date: Fri, Feb 19, 1999 at 11:26:07PM -
>
> In reply to:Pollywog
>
> Quoting Pollywog([EMAIL PROTECTED]):
>>
>> I have a couple of ipfwadm rules in
On 20-Feb-99 [EMAIL PROTECTED] wrote:
> Woops, I was on slackware when I did that, sorry
>
> rgrep ipfwadm /etc/*
oic Thanks.
--
Andrew
Subject: Re: where is the ipfwadm stuff by default?
Date: Sat, Feb 20, 1999 at 10:53:30AM +
In reply to:[EMAIL PROTECTED]
Quoting [EMAIL PROTECTED]([EMAIL PROTECTED]):
>
>
> Subject: where is the ipfwadm stuff by default?
> Date: Fri, Feb 19, 1999 a
Subject: where is the ipfwadm stuff by default?
Date: Fri, Feb 19, 1999 at 11:26:07PM -
In reply to:Pollywog
Quoting Pollywog([EMAIL PROTECTED]):
>
> I have a couple of ipfwadm rules in effect that I did not add. That means
> that the default installation
I have a couple of ipfwadm rules in effect that I did not add. That means
that the default installation has rules someplace. Does anyone know where I
can find them? Perhaps I should put all my rules in the same place.
thanks
--
Andrew
192.168.100.108 is the local machine - 192.168.100.* is outside.
I can telnet and ping outside - no problem. But I can't ssh to
192.168.100.102,
telnet on 192.168.100.108 doesn't work either and somehow printer jobs
aren't send until I disable the firewall
:-/
FW=/sbin/ipchains
case "$1" in
Hi,
I'm in the way of doing a upgrade to the 2.1.125 kernel.
I noticed that the ipfirewall/ipmasquerade options are quite
different from 2.0.3x.
Is there some handy howto/recipe to migrate from ipfwadm to
ipchains rules?
I compiled the kernel with the foll
Hello.
Sorry for a rather vague subject, but it's pretty tough
to describe the problem in just a couple of words...
Anyway, I have the Linux box doing the IP Masquerading,
using ipfwadm. It works. Whenever a Windows 98 machine
tries to connect to the net, without using a proxy server
Ideally.. I'd like to allow snmpd to work on my whole 203.41.122.128/26
subnet.. so that I can monitor a few other pcs...
Thanks
Michael
>
>Ok cool.. The script I got works ok.. few problems.. one of which I want to
>solve ASAP is that snmpd doesn't work.. I run mrtg on the linux machine
that
>t
Ok cool.. The script I got works ok.. few problems.. one of which I want to
solve ASAP is that snmpd doesn't work.. I run mrtg on the linux machine that
the packet filtering runs on.. I tried several commands that deal with ports
161, 162. But still not managed to get snmpd to work. Anyone care to
Hi. I have a nicely functioning masquerading
Debian 2.0 (2.0.34) box with the following
exception: when the win95 machines (connected
to a winnt4.0sp3 network) get their ip's by
way of the nt dhcp service, ip_masquerading
doesn't work. When I assign the ip to their
respective machines the masq
I am still getting use to this ipfwadm.. guess it is a better time then any
to learn some more... Anyway already have a real to block icmp pings.. I
want my machine to not reply to these.. so anyone willing to paste me a
example.
Basically I don't my machine to ping reply.. I think it uses
Take a look at http://www.xos.nl/linux/ipfwadm/paper/
Subject: re: ipfwadm
Date: Mon, Dec 21, 1998 at 09:17:15AM +1100
In reply to:Michael Fox
Quoting Michael Fox([EMAIL PROTECTED]):
>
> Anyone care to show me a quick and dirty ipfwadm script to allow
> ftp/http/irc
On Mon, 21 Dec 1998, Michael Fox wrote:
> Anyone care to show me a quick and dirty ipfwadm script to allow
> ftp/http/irc/mail/dns in/out from linux machine..
>
> I'd like to enable ipfw filters.. but stuck on the writing of the ipfw.sh
> script I would run.. examples wo
Anyone care to show me a quick and dirty ipfwadm script to allow
ftp/http/irc/mail/dns in/out from linux machine..
I'd like to enable ipfw filters.. but stuck on the writing of the ipfw.sh
script I would run.. examples would be great..
-- Michael
Administrator
maf networking services
[
Nuno Carvalho wrote:
> > Some time ago, I happened to find a web-based admin utility for ipfwadm
> > and ipchains. Now that I need it, I can't seem to find it anymore.
> > Perhaps somebody out there can help me out?
>
> You can check it on their official site:
&
On Tue, 15 Dec 1998, Robert Claeson wrote:
> Some time ago, I happened to find a web-based admin utility for ipfwadm
> and ipchains. Now that I need it, I can't seem to find it anymore.
> Perhaps somebody out there can help me out?
You can check it on their official site:
htt
Some time ago, I happened to find a web-based admin utility for ipfwadm
and ipchains. Now that I need it, I can't seem to find it anymore.
Perhaps somebody out there can help me out?
Thank's,
Robert
I have my linux machine routing my packets from my lans 64 ip subnet..
Anyone tell me if I can compile kernel with ipfw support and setup some ip
firewall rules using ipfwadm.. and do some packet filtering..
the machine with the link does.. www/mail/ftp/http/dns/irc so the firewall
should allow
Damon Muller <[EMAIL PROTECTED]> writes:
> What I want to do is use ipfwadm to block a single port - namely 31337
> (UDP). For anyone who has had their head in the sand for the last few
> months, that's the port that Back Orrifice listens on by default.
ipfwadm -I
Hi Folks,
Not sure if this has been covered before, and it isn't 100%
debian-specific, but I thought some ipfwadm guru out there might be able
to help a poor clueless idiot such as myself.
What I want to do is use ipfwadm to block a single port - namely 31337
(UDP). For anyone who has had
Michael Laing napisal(a):
[...]
: It's not totally clear to me how to use ipfwadm to do this...
:
: Also, I am considering moving to slink and kernel 2.1.125 and using
: ipchains instead. It looks simpler and I would like to learn just one
: tool, if possible.
Use ipfwadm-wrapper, not ip
It's not totally clear to me how to use ipfwadm to do this...
Also, I am considering moving to slink and kernel 2.1.125 and using
ipchains instead. It looks simpler and I would like to learn just one
tool, if possible.
Anyone have any comments/help?
Thanks,
ml
-BEGIN PGP SIGNATURE---
elp on ipfwadm
Hi,
What I want !? Mainly it's: have incoming telnet session and since
someone it's on my machine could not make outgoing telnet sessions ...
As i'm using kernel 2.0.35, I think, I must be using ipfwadm instead of
ipchains (for 2.1.xx series kernel).
1. It's
>> "NC" == Nuno Carvalho <[EMAIL PROTECTED]> writes:
NC> 2. When I've IP Firewall, IP Masquerable, IP Forwarding, etc I can't get
NC> my ISDN connection ! ;(
NC> - cut here --
NC> Nov 8 12:08:08 cavern kernel: isdn_net: ippp0: dial suppressed: isdn
stopped
NC> Nov 8 12:08:08 cavern ke
Hi,
What I want !? Mainly it's: have incoming telnet session and since
someone it's on my machine could not make outgoing telnet sessions ...
As i'm using kernel 2.0.35, I think, I must be using ipfwadm instead of
ipchains (for 2.1.xx series kernel).
1. It's out th
Hi,
>>"Collin" == Collin Rose <[EMAIL PROTECTED]> writes:
Collin> When I boot my system it says
Collin> ipfwadm: setsockopt error protocol not available
Collin> or something like that. What is the problem?
Chances are, you moved to a 2.1.1XX ke
When I boot my system it says
ipfwadm: setsockopt error protocol not available
or something like that. What is the problem?
cc replies to [EMAIL PROTECTED] please
'{print $2}'| sed
-e"s/addr\://"`
echo $ISP_IP
FIREWALL_SERVER="192.168.1.1"
NETWORK="192.168.1.0/24"
ALLIP="0.0.0.0/0"
HIPORTS="1024:65535"
#Flush out any existing rules
ipfwadm -I -f
ipfwadm -O -f
ipfwadm -F -f
#Start by denying eve
>> Whenever I type an ipportfw command, I always get an error back:
>>
>> ipfwadm: setsockopt failed: Protocol not available.
>>
>> What does this mean? And how do I resolve this? I have the current
>> kernal, installed IPchains successfully, but need to g
Whenever I type an ipportfw command, I always get an error back:
ipfwadm: setsockopt failed: Protocol not available.
What does this mean? And how do I resolve this? I have the current
kernal, installed IPchains successfully, but need to get this piece of the
puzzle going :)
Thanks in advance
Hi,
I just upgraded to hamm and now need to setup my two privates
networks again. Can I use the old ipfwadm? How to setup masquerade in
hamm? The ipmasq(8) program doesn't have man page.
Please I need urgent help, since my division is off.
Thanks,
[]s,
Mario O.de Me
running Debian 1.3. i have 2 Windowz95 machines connecting to my
> Debian
> box across a LAN then out on the net using ipfwadm. IRC (except for DCC
> chat & send) and web browsing works ok but usenet ,cuseeme, ICQ, real
> audio
> don't want to function at all. I've also
i'm running Debian 1.3. i have 2 Windowz95 machines connecting to my
Debian
box across a LAN then out on the net using ipfwadm. IRC (except for DCC
chat & send) and web browsing works ok but usenet ,cuseeme, ICQ, real
audio
don't want to function at all. I've also got Squid
I am wondering, is the default kernel from 386-binary(bo) compiled with
Masquerading?
I do not know if that is my problem, but whenever I try to use the
"ipfwadm" command (with [hopefully] valid switches) I always get a
message "ipfwadm: setsockopt failed: Protocol not available&
Mark Stone <[EMAIL PROTECTED]> writes:
> In order to use the ipfwadm command set, what options and modules need to
> be selected in configuring the kernel?
Under "Networking options", I think you need to have "IP: firewalling"
selected. You'll also need to
In order to use the ipfwadm command set, what options and modules need to
be selected in configuring the kernel? I thought I had done this
correctly, but keep getting an error message when I try to use ipfwadm.
The error message is something like "SOCKOPT error: protocol not
available.&quo
Lawrence <[EMAIL PROTECTED]> writes:
[snip]
> xosview stalls once I execute either one of the above commands, it seems
> that xosview expects a non-anywhere source/destination.
I expect this would be because it wants to track both incoming and
outgoing packets separately. It shouldn't lock up t
Elie Rosenblum wrote:
> $IPADDR=`ifconfig ppp0|perl -ne 'print $1 if (/inet addr:(\S+)\s/);'`
> ipfwadm -A -a -P $IPADDR -D 0/0
It is what I want, thanks, though I found that I don't need '$' for the
first line.
Lawrence
--
TO UNSUBSCRIBE FROM THIS MAILING LIS
Carey Evans wrote:
> Apart from looking at ip-up, I'd suggest you also think about other
> ways of doing this, like:
>
> # ipfwadm -A -a
>
> if you only have the dialup interface, or
>
> # ipfwadm -A -a -W ppp0
>
> if you just want to do accountin
Lawrence <[EMAIL PROTECTED]> writes:
> I am using dialup PPP and need to run ipfwadm everytime I connect to my
> ISP. I know that I can put ipfwadm into /etc/rc file. What is the
> best/easy way to get the IP address other than using ifconfig or route
> (they are not good bec
On Mon, 22 Sep 1997, Lawrence wrote:
> I am using dialup PPP and need to run ipfwadm everytime I connect to my
> ISP. I know that I can put ipfwadm into /etc/rc file. What is the
> best/easy way to get the IP address other than using ifconfig or route
> (they are not good because t
In article <[EMAIL PROTECTED]> Lawrence wrote:
: I am using dialup PPP and need to run ipfwadm everytime I connect to my
: ISP. I know that I can put ipfwadm into /etc/rc file. What is the
: best/easy way to get the IP address other than using ifconfig or route
: (they are not good becau
I am using dialup PPP and need to run ipfwadm everytime I connect to my
ISP. I know that I can put ipfwadm into /etc/rc file. What is the
best/easy way to get the IP address other than using ifconfig or route
(they are not good because the output is more than one line)?
ipfwadm -A -a -P My
s can telnet, browse, ftp, etc
> to external servers on Internet, being masquerade with the Linux IP.
> I'm using this sintax:
> # ipfwadm -O -a deny -S 0.0.0.0/0 -D some.site.denied/0
>
> but isn't working, since I can connect the denied site from a inside
>
-Masq is working OK; all machines can telnet, browse, ftp, etc
to external servers on Internet, being masquerade with the Linux IP.
I'm using this sintax:
# ipfwadm -O -a deny -S 0.0.0.0/0 -D some.site.denied/0
but isn't working, since I can connect the denied site from a inside
m
On Thu, 21 Aug 1997, Mike wrote:
> Jose Maria Omo Millan wrote:
> ># Redirect to Squid proxy server
> >/sbin/ipfwadm -I -a acc -P tcp -D default/0 80 -r 8080
> >ERROR: The requested URL could not be retrieved
> > While trying to retrieve the URL: /
>
&g
On Fri, 21 Mar 1997, Jose Maria Omo Millan wrote:
> # Redirect to Squid proxy server
> /sbin/ipfwadm -I -a acc -P tcp -D default/0 80 -r 8080
>
> This rule really redirect http request of any PC to squid server,
> but I ever get the following error:
>
> ERROR: The re
Jose Maria Omo Millan wrote:
># Redirect to Squid proxy server
>/sbin/ipfwadm -I -a acc -P tcp -D default/0 80 -r 8080
>ERROR: The requested URL could not be retrieved
> While trying to retrieve the URL: /
The http 1.0 protocol does not send requested IP address in the r
Hello,
I would like redirect all www traffic from my lan through Squid server
transparently. I use IP masquerading and besides I do:
# Redirect to Squid proxy server
/sbin/ipfwadm -I -a acc -P tcp -D default/0 80 -r 8080
This rule really redirect http request of any PC to squid server
On Sat, 12 Jul 1997, Randy Edwards wrote:
>Being the Linux newbie that I am, I was wondering there the most
> appropriate place to add the ipfwadm lines would be.
>
>I'm thinking they'd be a "natural" for adding to /etc/init.d/network, but
> I was wo
at I am, I was wondering there the most
: appropriate place to add the ipfwadm lines would be.
:
:I'm thinking they'd be a "natural" for adding to /etc/init.d/network, but
: I was wondering if this is a good place for such commands or whether there's
: a standard place
ace to add the ipfwadm lines would be.
I'm thinking they'd be a "natural" for adding to /etc/init.d/network, but
I was wondering if this is a good place for such commands or whether there's
a standard place for such things.
Regards,
> I have looked at my /proc/net directory. There are no ip_* files. What
> should I do.
That means that there isn't any ip forwarding or firewalling, for sure.
> Note: After recompiling kernel I have noticed following:
>
> Setup is 4384 bytes
> System is 638kB
> System is too big
> Man[1]: ***[
,
Drazen
--
From: Jim Pick
To: Lalovic, Drazen
Cc: debian
Subject: Re: ipfwadm
Date: Wednesday, July 02, 1997 9:05PM
> I have recompiled 2.0.29 Kernel to enable IP forwarding and
firewalling.
> When I try to configure ipfwadd it tells me:
> ipfwadm: setsockopt failed: Protocol not
On Wed, 02 Jul 1997 16:44:00 EDT "Lalovic, Drazen"
([EMAIL PROTECTED]) wrote:
> I have recompiled 2.0.29 Kernel to enable IP forwarding and firewalling.
> When I try to configure ipfwadd it tells me:
> ipfwadm: setsockopt failed: Protocol not available.
> Does somebody ha
> I have recompiled 2.0.29 Kernel to enable IP forwarding and firewalling.
> When I try to configure ipfwadd it tells me:
> ipfwadm: setsockopt failed: Protocol not available.
> Does somebody have a solution for this problem.
I'm not sure. You can check to see if they are
I have recompiled 2.0.29 Kernel to enable IP forwarding and firewalling.
When I try to configure ipfwadd it tells me:
ipfwadm: setsockopt failed: Protocol not available.
Does somebody have a solution for this problem.
Thank you,
Drazen
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word
sr/bin/pon, but I just need what
>rule(s) to add... In fact, here's the awking I'd be using:
>
>ifconfig ppp0 | head -2 | tail -1 | awk -F " " '{print $2}' \
>| awk -F: '{print $2}'
I don't know anything about ipfwadm but it would be much easie
Hey... So far, here's what I've got:
ipfwadm -I -f
ipfwadm -I -a deny -P icmp
This is a non-masqueraded setup. It's my dialup machine at home. I'd
also like to deny access to port 25 from remote sites. I've tried:
ipfwadm -I -a deny -P tcp -S 0/0 25
However,
ough DOSEMU.
> > |
> >
> > It's possible. Have a look around for the 'redir' package, which will
do
> it
> > for you.
> >
> Not what I want. I have looked at 'redir'. I would like it to be
> implemented more at the kernel level. C
e a look around for the 'redir' package, which will do
it
> for you.
>
Not what I want. I have looked at 'redir'. I would like it to be
implemented more at the kernel level. Currently, I can run this command:
ipfwadm -I -P tcp -a accept -S 0/0 -D 127.0.0.1/32 23 -r 1
I current connect to the Internet with PPPD, and all works well. I have
compiled my kernel (2.0.24) with IP_MASQ enabled, and have verified that
this works. Here is my question.
Can it be setup, so that when someone telnets into the Linux box, instead
of the request being handled there, it is ma
I current connect to the Internet with PPPD, and all works well. I have
compiled my kernel (2.0.24) with IP_MASQ enabled, and have verified that
this works. Here is my question.
Can it be setup, so that when someone telnets into the Linux box, instead
of the request being handled there, it is ma
Adam Heath wrote:
|I current connect to the Internet with PPPD, and all works well. I have
|compiled my kernel (2.0.24) with IP_MASQ enabled, and have verified that
|this works. Here is my question.
|
|Can it be setup, so that when someone telnets into the Linux box, instead
|of the request being
I current connect to the Internet with PPPD, and all works well. I have
compiled my kernel (2.0.24) with IP_MASQ enabled, and have verified that
this works. Here is my question.
Can it be setup, so that when someone telnets into the Linux box, instead
of the request being handled there, it is ma
:
reroute
mode ppp
local 194.109.14.67
remote 194.109.2.10
The box on the internal network has 192.168.1.1 as its gateway.
On the box running diald I also issue these two commands:
ipfwadm -F -a masquerade -S 192.168.1.0/24 -D 0.0.0.0/0 -V 192.168.1.1
ipfwadm -F -p deny
This set up works: I can
Hi all,
I sent a fairly long enquiry a couple of days ago but nothing happened. In
this case I would like to know who are the DIALD and IPFWADM maintainers so
that I can really get to grips with what is happening internally in these
packages and see if I can solve my problems.
Thanks.
"
't even allow you to enable masquerading unless IP forwarding is also
>enabled first.
>
>Gerry
Sorry Gerry, I was misleading you. I just checked my config and
CONFIG_IP_FORWARDING is enabled.
In another mail:
>From: Giuseppe Vacanti <[EMAIL PROTECTED]>
># Forwar
ds3-net, masquerading as deselby.xs4all.nl.
ipfwadm -F -a masquerade -S 192.168.1.0/24 -D 0.0.0.0/0 -V 192.168.1.1
ipfwadm -F -p deny
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
inet addr:200.28.16.97 P-t-P:200.28.16.4 Mask:255.255.255.0
UP POINTOPOINT RUNNING MTU:1524 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0
TX packets:3 errors:0 dropped:0 overruns:0
What values must I sepcify in ipfwadm -I, ipfwadm -F, ipfwadm -O.
I
nds
>like it is working.
>
> /sbin/ipfwadm -F -a masquerade -S 192.168.100.0/24 -D 0.0.0.0/0
>
>Good luck,
>
>Gerry
>[EMAIL PROTECTED]
Gerry (and all the other respondents too)
Thanks!
You all are saying pretty much the same thing and it sounds like I was
really looki
1 - 100 of 109 matches
Mail list logo
