Check the definition of INTERNAL_NETWORK. When I wrote 192.168.2.1/27, it was sort of by example (my own network). It may not be appropriate for your network. Do you know how to interpret networks listed like this, with the netmask? In this particular case, it means 192.168.2.0-192.168.2.31. Do your client machines' addresses fall under this range? If not, you have 2 options: change your client machines' addresses, or change thie INTERNAL_NETWORK= line. Vineet * dude (dude@deletia.com) [010715 18:17]: <snip> > So my question is: > Why doesnt LINE A work? <snip> > INTERNAL_NETWORK=192.168.2.1/27 > #LINE A > $IPTABLES -t nat -s $INTERNAL_NETWORK -d ! $INTERNAL_NETWORK -o $EXTERNAL_IFACE -j MASQUERADE > > #LINE B > #iptables -t nat -A POSTROUTING -j MASQUERADE > <snip>
Attachment:
pgpFCnoXvPtM8.pgp
Description: PGP signature