[PLUG] iptables and NAT

Ziegler, Scott on Thu, 06 Feb 2003 16:10:35 -0500

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] iptables and NAT

From: "Ziegler, Scott" <scott_ziegler@merck.com>

To: "Plug (E-mail)" <plug@lists.phillylinux.org>

Subject: [PLUG] iptables and NAT

Date: Thu, 06 Feb 2003 16:03:03 -0500

Delivery-date: Thu, 06 Feb 2003 16:10:35 -0500

Envelope-to: jeff@localhost

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

I am trying to setup a Linux workstation (Slackware 8 with 2.4.18 kernel) to tie a local network (192.168.x.x) of XP machines to our corporate network. The Linux machine has a hard coded IP address and it works on the network as far as telnet, ssh, browsing, etc. We need to have network connectivity from the XP (for all of those M$ updates) machines through the Linux machine. I have tried several variations of iptables configurations and it appears that I still have some NAT problems. On a ping test I appear to have name resolution, but I don't get any acknowledgements and the browser cannot load any pages. I have rebuilt the kernel with the following modules: config_ip_advanced_router config_ip_nf_iptables config_ip_nf_filter config_ip_nf_nat config_ip_nf_nat_needed config_ip_nf_target_masquerade config_ip_nf_target_redirect config_ip_nf_ftp config_ip_nf_mangle Our public interface is eth0 and the private is eth1. eth1 is up and running with an entry in the route table. I have followed several tutorials from web sites and books without success. Also, when I configure the iptables, the Linux machine can no longer browse internet from the console. The configuration I have most recently used is: iptables --table nat --append POSTROUTING --out-interface eth0 -j MASQUERADE iptables --append FORWARD --in-interface eth1 -j ACCEPT The references I have used are: http://www.yolinux.com/TUTORIALS/LinuxTutorialNetworking.html#ADDNIC http://www.netfilter.org/unreliable-guides/NAT-HOWTO/ Linux Firewalls by Robert L. Ziegler One thing that has not been very clear is if I need to setup ipchains. The yoliux reference shows the setting of ipchains but none of the other references talk about using ipchains. I would appreciate any help or suggestions. Thanks Scott Ziegler <<Ziegler, Scott.vcf>> ------------------------------------------------------------------------------ Notice: This e-mail message, together with any attachments, contains information of Merck & Co., Inc. (Whitehouse Station, New Jersey, USA) that may be confidential, proprietary copyrighted and/or legally privileged, and is intended solely for the use of the individual or entity named on this message. If you are not the intended recipient, and have received this message in error, please immediately return this by e-mail and then delete it. ==============================================================================
Attachment: Ziegler, Scott.vcf
Description: Binary data

Follow-Ups:

RE: [PLUG] iptables and NAT
From: "zeek" <zeek@sparklehouse.com>

Re: [PLUG] iptables and NAT
From: epike@isinet.com

Re: [PLUG] iptables and NAT
From: Kam Salisbury <kam@kamsalisbury.com>

Re: [PLUG] iptables and NAT
From: LeRoy Cressy <leroy@lrcressy.com>

Prev by Date: RE: [PLUG] Without OS X

Next by Date: RE: [PLUG] iptables and NAT

Previous by thread: Re: [PLUG] Without OS X

Next by thread: RE: [PLUG] iptables and NAT

Index(es):

Date

Thread