Tim wrote:
On Fri, 2008-11-21 at 10:17 -0800, Rick Stevens wrote:
In /etc/sysconfig/iptables-config, if you change the following lines
to these:
IPTABLES_SAVE_ON_STOP = "yes"
IPTABLES_SAVE_ON_RESTART = "yes"
(by default they're set to "no"), you will cause the system to run
On Fri, 2008-11-21 at 10:17 -0800, Rick Stevens wrote:
> In /etc/sysconfig/iptables-config, if you change the following lines
> to these:
>
> IPTABLES_SAVE_ON_STOP = "yes"
> IPTABLES_SAVE_ON_RESTART = "yes"
>
> (by default they're set to "no"), you will cause the system to run
>
Robin Laing wrote:
Antonio Olivares wrote:
--- On Thu, 11/20/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
From: Christopher K. Johnson <[EMAIL PROTECTED]>
Subject: Re: set up NAT (network address translation) on local server
To: "Community assistance, encouragemen
Antonio Olivares wrote:
--- On Thu, 11/20/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
From: Christopher K. Johnson <[EMAIL PROTECTED]>
Subject: Re: set up NAT (network address translation) on local server
To: "Community assistance, encouragement, and advice for usin
On Thursday 20 November 2008 13:52, Christopher K. Johnson wrote:
> Does /etc/sysconfig/iptables actually contain the lines
>
> *nat
>
> :PREROUTING ACCEPT [1:233]
> :POSTROUTING ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
>
> -A POSTROUTING -s 192.168.1.0/24 -o eth0 -j SNAT --to-source 10.154.19.210
> COM
Tim wrote:
On Thu, 2008-11-20 at 07:46 -0800, Antonio Olivares wrote:
[EMAIL PROTECTED] ~]# cat /etc/sysconfig/iptables
*nat
:PREROUTING ACCEPT [1:233]
On Thu, 2008-11-20 at 07:46 -0800, Antonio Olivares wrote:
> [EMAIL PROTECTED] ~]# cat /etc/sysconfig/iptables
> *nat
> :PREROUTING ACCEPT [1:233]
>
If you send me off-list the iptables file you want as an attachment, I
will send you back notes and a corrected file.
Clearly there is some simple mis-communication or editing going on
because this is a basic iptables configuration.
Chris
--
"A society grows great when old men plant trees
--- On Thu, 11/20/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
> From: Christopher K. Johnson <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: "Community assistance, encouragement, and advice for using Fed
It appears from your email that there was an editing error at the COMMIT
or line after.
Perhaps instead of a line-end on those lines it has spaces and wrapped
them into one long line?
Could happen from copy and paste depending on circumstances.
Check that each rule is on its own line.
Antonio O
--- On Thu, 11/20/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
> From: Christopher K. Johnson <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: [EMAIL PROTECTED], "Community assistance, encouragement, and
I would add the *nat through COMMIT before the existing *filter line.
I don't believe it matters as long as you do not mix them together. But
usually the *nat is much briefer than *filter, thus a good convention to
put it first to find easily later.
Antonio Olivares wrote:
It seems that it
--- On Thu, 11/20/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
> From: Christopher K. Johnson <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: "Community assistance, encouragement, and advice for using Fed
Does /etc/sysconfig/iptables actually contain the lines
*nat
:PREROUTING ACCEPT [1:233]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
--- On Wed, 11/19/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
> From: Christopher K. Johnson <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: "Community assistance, encouragement, and advice for using Fedo
No snat rule in effect!
Was the rule you provided in your original post verbatim? Because it
had 'a' instead of the public address. In fact the rule seemed overly
specific in other ways too.
Here is what I have for a snat rule where the public (Internet)
interface is eth1 (substitute your pu
On Wed, 2008-11-19 at 15:28 -0800, Antonio Olivares wrote:
>
>
> --- On Wed, 11/19/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
>
> > From: Christopher K. Johnson <[EMAIL PROTECTED]>
> > Subject: Re: set up NAT (network address translation) on local
Antonio Olivares wrote:
--- On Wed, 11/19/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
From: Christopher K. Johnson <[EMAIL PROTECTED]>
Subject: Re: set up NAT (network address translation) on local server
To: "Community assistance, encouragement, and advice
--- On Wed, 11/19/08, Christopher K. Johnson <[EMAIL PROTECTED]> wrote:
> From: Christopher K. Johnson <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: "Community assistance, encouragement, and advice for using Fedo
On Wed, 2008-11-19 at 15:13 -0800, Antonio Olivares wrote:
> --- On Wed, 11/19/08, Craig White <[EMAIL PROTECTED]> wrote:
>
> C:\Documents and Settings\6355-win2000>ping 209.131.36.158
>
> Pinging 209.131.36.158 with 32 bytes of data:
>
> Reply from 192.168.0.1: Destination host unreachable.
>
--- On Wed, 11/19/08, Craig White <[EMAIL PROTECTED]> wrote:
> From: Craig White <[EMAIL PROTECTED]>
> Subject: Re: set up NAT (network address translation) on local server
> To: [EMAIL PROTECTED], "Community assistance, encouragement, and advice for
> using Fedora.&
What does this command produce? (shows whether your snat rule is
implemented correctly)
iptables -vnL -t nat
And this one? (tells if ip forwarding is on)
cat /proc/sys/net/ipv4/ip_forward
Chris
--
"A society grows great when old men plant trees whose shade they know
they shall never sit in
On Wed, 2008-11-19 at 13:09 -0800, Antonio Olivares wrote:
> --- On Wed, 11/19/08, Antonio Olivares <[EMAIL PROTECTED]> wrote:
>
> > From: Antonio Olivares <[EMAIL PROTECTED]>
> > Subject: set up NAT (network address translation) on local server
> > To: fedora
--- On Wed, 11/19/08, Antonio Olivares <[EMAIL PROTECTED]> wrote:
> From: Antonio Olivares <[EMAIL PROTECTED]>
> Subject: set up NAT (network address translation) on local server
> To: fedora-list@redhat.com
> Date: Wednesday, November 19, 2008, 12:59 PM
> Dear all,
Dear all,
Starting new thread to clear up the other one:
Re: Make a DHCP server using Fedora - Help
After going through the steps outlined and the guidance provided by great
individuals that participate in this list :)
/* Done now added eth1 to DHCPARGS */
[EMAIL PROTECTED] ~]$ cat /etc/syscon
25 matches
Mail list logo