-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This problem was solved by recompiling the kernel, the modules and
re-installing the moduels (all this, just in case) and latter by recompiling
iptables (no need to compile the modules inside the kernel).
Thanks.
El Lunes Septiembre 1 2003 13:14, Pupe
Pupeno wrote:
El Lunes Septiembre 1 2003 16:44, Andrew Gaffney escribió:
Pupeno wrote:
Hello,
When I run "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE" I get
iptables: Invalid argument, it seems I have all the modules loaded (if
not, they load automatically):
# lsmod | grep ip
ipt_MASQUE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
El Lunes Septiembre 1 2003 16:44, Andrew Gaffney escribió:
> Pupeno wrote:
> > Hello,
> > When I run "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE" I get
> > iptables: Invalid argument, it seems I have all the modules loaded (if
> > not, they
Pupeno wrote:
Hello,
When I run "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE" I get
iptables: Invalid argument, it seems I have all the modules loaded (if not,
they load automatically):
# lsmod | grep ip
ipt_MASQUERADE 1336 0 (autoclean)
ipt_state568 1 (au
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
When I run "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE" I get
iptables: Invalid argument, it seems I have all the modules loaded (if not,
they load automatically):
# lsmod | grep ip
ipt_MASQUERADE 1336 0 (autoclean)
ipt_
On Wednesday 05 February 2003 09:42, Paul de Vrieze wrote:
> Why don't you use briding (+transparent firewalling) in this case.
> It makes live a lot easier. Of course this means that you need to
> have an official ip address for all machines (or block them from
> the firewall)
I solved this "prob
On Tuesday 04 February 2003 22:49, Matthias F. Brandstetter wrote:
> Hi all,
>
> I have an iptables-based GW/firewall and private LAN behind. Via
> one-to-one NAT (with shorewall) I give the ext. NIC of the GW some
> more IP aliases, so that the clients behind are reachable from the
> outside.
>
W
> Now to the problem: I CANNOT ping the internal machines (with the
> official IP address) from outside, but I CAN ping them from the GW.
> Looks like a NAT problem, BUT: a tcpdump shows something else.
>
> (eth1 is the inner NIC, 172.16.1.128 is the inner machine, so correct
> NAT I think)
Hmm...
Hi all,
I have an iptables-based GW/firewall and private LAN behind. Via
one-to-one NAT (with shorewall) I give the ext. NIC of the GW some
more IP aliases, so that the clients behind are reachable from the
outside.
Now to the problem: I CANNOT ping the internal machines (with the
official IP