Re: [nottingham] Routing et al

From: Simon Amor (simon@shoe.bocks.com)
Date: Fri 08 Jun 2001 - 18:52:29 BST

Previous message: john layton: "[nottingham] Routing et al"
In reply to: john layton: "[nottingham] Routing et al"
Next in thread: Simon Amor: "Re: [nottingham] Routing et al"
Reply: Simon Amor: "Re: [nottingham] Routing et al"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Sounds like he needs to setup IP masquerading on the Linux gateway
using ipchains. Add something like the following section to rc.local

echo -n "Setting up IP Masquerading..."
echo 1 > /proc/sys/net/ipv4/ip_forward

/sbin/ipchains -P forward DENY
/sbin/ipchains -F forward
/sbin/ipchains -A forward -s 192.168.1.0/24 -d ! 192.168.1.0/24 -j MASQ
echo "done."

This should allow most things to work ok, although some tweaking of
timeouts may be required.

Simon

john layton wrote:
> Folks,
>
> I know little about routing, IP masquerading/spoofing and proxying, or their
> interaction, however a problem has come to my attention (see atatched email)
> such that two networks need to be connected through a linux box with two
> ethernet cards (one card plugged into a cable modem NTL) and the other is
> visible to windows machines on the local network.
>
> Any information or experiences would be appreciated as I'm sure this has
> already been done.
>
> Thanks in advance,
>
> John.
>
>
> ---------- Forwarded Message ----------
> Subject: Help!
> Date: Tue, 5 Jun 2001 17:10:46 +0100
> From: mick <mickcarter@ntlworld.com>
> To: twallace@cais.com j.s.layton@totalise.co.uk
>
>
> Hi,
>
> I have a network problem which I think is related to routing. Having read
> your article www.dc.net/twallace/linux_route on simple routing and followed
> the instructions the problem remains.....
>
> I have a machine with Suse Linux 7.1 which has two network cards (192.168.0.1
> and 62.254.2.69). 192.168.0.1 goes to a switch which is connected to window
> machines, the 62.254.2.69 (from dhcp) is connected to a cable modem and goes
> to the internet. I am running squid http proxy server to deal with any web
> request on the network, but how do I get pop3, smtp, napster (port 8888 I
> think) and other internet protocols. Is this something to do with routing
> and/or ip-masquerading? Is there a good book?
>
> Thanks
>
> Mick
>
> -------------------------------------------------------
> --------------------------------------------------------------------
> http://www.lug.org.uk http://www.linuxportal.co.uk
> http://www.linuxjob.co.uk http://www.linuxshop.co.uk
> --------------------------------------------------------------------

-- 
Simon Amor   simon@shoe.bocks.com
ICQ:419119   http://shoe.bocks.com/
--------------------------------------------------------------------
http://www.lug.org.uk                   http://www.linuxportal.co.uk
http://www.linuxjob.co.uk               http://www.linuxshop.co.uk
--------------------------------------------------------------------

Previous message: john layton: "[nottingham] Routing et al"
In reply to: john layton: "[nottingham] Routing et al"
Next in thread: Simon Amor: "Re: [nottingham] Routing et al"
Reply: Simon Amor: "Re: [nottingham] Routing et al"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Thu 22 Nov 2001 - 13:13:48 GMT