Re: More IPtable help

To: Vineet Kumar <debian-security@virtual.doorstop.net>
Cc: <debian-firewall@lists.debian.org>
Subject: Re: More IPtable help
From: dude <dude@deletia.com>
Date: Mon, 16 Jul 2001 16:34:22 -0400 (EDT)
Message-id: <[🔎] Pine.LNX.4.33.0107161632250.28224-100000@leary.csoft.net>
In-reply-to: <[🔎] 20010715220914.A2885@doorstop.net>


On Sun, 15 Jul 2001, Vineet Kumar wrote:

> Check the definition of INTERNAL_NETWORK. When I wrote 192.168.2.1/27,
> it was sort of by example (my own network). It may not be appropriate
> for your network. Do you know how to interpret networks listed like
> this, with the netmask?
>
> In this particular case, it means 192.168.2.0-192.168.2.31. Do your
> client machines' addresses fall under this range? If not, you have 2
> options: change your client machines' addresses, or change thie
> INTERNAL_NETWORK= line.


well, the thing is that i have four clients
with IP's of 	192.168.2.2 tank
		192.168.2.3 text
		192.168.2.4 pooky
		192.168.2.20 evvie

I think the problem is that none of them can
get to the nameserver from my ISP.

Unless I use Line B (but this seems to open things up way too much).,

G



>
> Vineet
>
> * dude (dude@deletia.com) [010715 18:17]:
> <snip>
> > So my question is:
> > Why doesnt LINE A work?
> <snip>
> > INTERNAL_NETWORK=192.168.2.1/27
> > #LINE A
> > $IPTABLES -t nat -s $INTERNAL_NETWORK -d ! $INTERNAL_NETWORK -o $EXTERNAL_IFACE -j MASQUERADE
> >
> > #LINE B
> > #iptables -t nat -A POSTROUTING -j MASQUERADE
> >
> <snip>
>

Reply to:

Follow-Ups:
- Re: More IPtable help
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>

References:
- Re: More IPtable help
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>

Prev by Date: Re: More IPtable help
Next by Date: Re: More IPtable help
Previous by thread: Re: More IPtable help
Next by thread: Re: More IPtable help
Index(es):
- Date
- Thread