[NTLUG:Discuss] IP Masquerding on RH7.2
Dan Carlson
dmcarlsn at yahoo.com
Thu Feb 21 16:57:23 CST 2002
Turn on logging for the REJECT packets, then grep DENY /var/log/messages
(or wherever). This will show you which packets are being rejected, which
should provide a clue as to what it happening, maybe even enough
information to solve the problem.
Dan Carlson
----- Original Message -----
From: "Tim Willis" <tim at coderite.com>
To: <discuss at ntlug.org>
Sent: Thursday, February 21, 2002 4:40 PM
Subject: [NTLUG:Discuss] IP Masquerding on RH7.2
> Using this configuration I am able to ping IP addresses on my external
> network and ping IP addresses on the internet. I am not, however, able
> to browse the web, or send/receive pop3 traffic. What's wrong with my
> setup?
>
> [root at sauron sbin]# ./ipchains -L
> Chain input (policy ACCEPT):
> target prot opt source destination
> ports
> ACCEPT udp ------ zaphod.coderite.com anywhere
> domain -> 1025:65535
> ACCEPT all ------ anywhere anywhere n/a
> ACCEPT all ------ anywhere anywhere n/a
> REJECT tcp -y---- anywhere anywhere any
> -> 0:1023
> REJECT tcp -y---- anywhere anywhere any
> -> nfs
> REJECT udp ------ anywhere anywhere any
> -> 0:1023
> REJECT udp ------ anywhere anywhere any
> -> nfs
> REJECT tcp -y---- anywhere anywhere any
> -> x11:6009
> REJECT tcp -y---- anywhere anywhere any
> -> xfs
> Chain forward (policy ACCEPT):
> target prot opt source destination
> ports
> MASQ all ------ zaphod.coderite.com/24 anywhere n/a
> MASQ all ------ 192.168.1.0/24 anywhere n/a
> MASQ all ------ 192.168.0.0/16 anywhere n/a
> MASQ all ------ 192.168.0.0/16 anywhere n/a
> Chain output (policy ACCEPT):
>
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list